TrustArc: Supercharging Data Privacy

Chris Babel, CEO
The European Union General Data Protection Regulation (GDPR) compliance deadline of May 25, 2018 is looming, requiring businesses to protect the personal data and privacy of EU residents. The regulation will have far-reaching implications for companies worldwide, setting forth a robust common baseline having cross-border impact. With less than a year left to comply with the GDPR, many organizations are struggling to identify gaps, build a program, and implement controls. Arrayed against this challenge is TrustArc, a data privacy management company, founded in 1997 that provides an integrated suite of technology, consulting and certification solutions to assist organizations to build their GDPR programs, assess and remediate risks, and manage ongoing compliance.

“As a trusted partner, we are committed to powering smarter privacy, by reducing the complexity in compliance and risk management, and empowering privacy professionals with the resources they need,” says Chris Babel, CEO of TrustArc. Based on the unique combination of privacy expertise, proven methodology, and powerful technology, TrustArc is helping over 1,000 paying clients worldwide to demonstrate compliance, minimize risk, and build trust through self-service and managed service options. TrustArc supports clients with over 50 privacy consultants and other staffers holding CIPP, CIPT or CIPM certifications from the International Association of Privacy Professionals (IAPP), including 10 consultants holding the prestigious Fellow of Information Privacy (FIP) certification.

TrustArc’s SaaS-based Data Privacy Management Platform provides organizations with a proven way to manage their data privacy compliance programs. The platform and its modules are integrated and scalable for businesses to enhance and operationalize privacy program management by efficiently sharing data while complying with new accountability obligations and stronger restrictions on international data flows. The TrustArc Data Privacy Management Platform can be integrated with a variety of existing third party GRC platforms and other applications. The TrustArc platform also supports clients seeking privacy certifications through TRUSTe, a TrustArc subsidiary, such as under the EU-U.S. Privacy Shield.

While building a comprehensive program, organizations need to evaluate where their personal and sensitive data resides.

We are committed to powering smarter privacy, by reducing the complexity in compliance and risk management

TrustArc offers a data inventory and mapping solution—Data Flow Manager—to help organizations create a comprehensive inventory of relevant data flows and identify associated risk levels.

Once enterprises identify their personal data, they must conduct regular readiness risk assessments to understand the degree of risk they face when processing data. TrustArc’s privacy consulting team is available, if needed by clients, to perform a comprehensive assessment of the organization’s current privacy posture, including for GDPR readiness. This assessment is powered by TrustArc’s Assessment Manager module, which enables organizations to simplify the end-to-end processes for conducting and managing PIAs, DPIAs, and related risk assessments. Assessment Manager is designed to ensure that assessed data is comprehensive, complete and accurate, that the processing of information is simplified, and that the path to remediation is accelerated. In addition, TrustArc offers pre-built Assessment Manager templates for conducting privacy assessments, such as DPIAs, embodying extensive legal know-how and insights from TrustArc’s team of privacy lawyers, former Chief Privacy Officers and privacy consultants.

TrustArc’s Cookie Consent Manager provides an intuitive user interface to help organizations obtain data subject consents, handle data subject access requests and manage third-party risks. TrustArc Ads Compliance Manager helps companies address online behavioral advertising compliance requirements, such as those set forth by the European Interactive Digital Advertising Alliance (EDAA).

The complex international landscape of data privacy laws and regulations is constantly evolving, requiring organizations continuously to adapt their privacy policies and procedures. In order to help clients meet these challenges, TrustArc monitors regulatory changes on an ongoing basis and develops any needed enhancements to its Data Privacy Management Platform.


San Francisco, CA

Chris Babel, CEO

Provider of technology-powered privacy and risk management solutions, supported by a team of privacy experts