Build a Data Privacy Program

Implement a privacy framework that supports compliance and also meets business objectives.
 Join now

If you're already a member, click here to log in.

Major Business Pain Points

  • Data privacy is increasingly on the tip of our tongues, regardless of company size or industry.
  • With impending regulatory frameworks looming, business and IT leaders find themselves scrambling to ensure that all bases are covered when it comes to data privacy.
Build a Data Privacy Program-Pain Points

Recommendations

Key Points

  • Take a quantitative approach to data privacy.
  • Use metrics and a risk-based approach to drive a privacy framework that not only supports compliance but also considers the custom needs of your organization.

Approach

Build a Data Privacy Program-Recommendations
  • Sell privacy to the business by speaking a language they understand. IT and InfoSec leaders need to see privacy as not just compliance but also a driver of business efficiency.
  • Integrate and build by developing a program that:
  • Promotes freedom of information and access to this information.
  • Establishes privacy and security standards with respect to access of this information.
 Subscribe to Premium

Methodology and Tools

Executive Brief

Read the concise Executive Brief to find out why you should take a quantitative approach when building your privacy program and review the methodology.

  • Build a Data Privacy Program – Executive Brief
  • Build a Data Privacy Program – Phases 1-4

1. Collect privacy requirements

Identify the driving forces behind the privacy program and begin to assign ownership across the organization.

  • Build a Data Privacy Program – Phase 1: Collect Privacy Requirements
  • Data Privacy Program RACI Chart

2. Conduct a privacy gap analysis

Understand where personal data lives and how it is handled throughout its lifecycle. Assess your current privacy maturity and begin to identify gaps.

  • Build a Data Privacy Program – Phase 2: Conduct a Privacy Gap Analysis
  • Privacy Framework Tool
  • Data Process Mapping Tool

3. Build the privacy roadmap

Identify priority gaps within your current privacy practices and begin to allocate quantifiable cost and effort values to move toward target privacy maturity.

  • Build a Data Privacy Program – Phase 3: Build the Privacy Roadmap
  • Privacy Analysis by Business Unit Tool
  • Privacy Notice Template – External Facing
  • Data Protection Policy
  • Cookie Policy Template – External Facing
  • Data Retention Policy Template
  • Data Protection Impact Assessment Tool

4. Implement and operationalize

Ensure that your program is actionable by selecting relevant metrics and making them operational to support the ongoing development of privacy in the organization.

  • Build a Data Privacy Program – Phase 4: Implement and Operationalize
  • Data Privacy Program Report

    All resources on this page are provided to Cyber Leadership Hub members under license from third parties including Info-Tech Research Group Inc, a global leader in providing IT research and advice.