Data Privacy

Global data privacy and security rules are increasingly complex and sophisticated. Our global team of consultants are leading practitioners and thought leaders in our fields. We have broad experience across the full spectrum of data privacy and cybersecurity, from building robust GDPR, CCPA, and BCR compliance programs to managing large scale data breaches - and everything in between. Our advice is tailored, innovative, pragmatic, and most importantly, easy to implement.  

Data Privacy Programs

Our data privacy programs address compliance with GDPR, CCPA, BCR, and other data privacy rules and standards across the globe. Following a gap analysis, we design and implement a full data privacy program tailored to our client's operations and its strategic digital goals. Work on the data privacy program includes the following features: 

• Gap Analysis 

• Analysis of Processing 

• Data Inventory 

• Data Privacy Notices 

• Data Privacy Policies and Procedures 

• Data Privacy Agreements 

• Data Privacy Risk Management 

• Monitoring and Improvement Metrics

With all data privacy policies and procedures fully operationalised and falling under a single program, your organisation will have a solid foundation to drive forward its internal and external digital business.

Requests, Complaints, and Incidents

You just received the email; the deadline is fast approaching. We understand the challenges of handling an unexpected high profile event that sends your organisation into a spin. You have a calendar filled with meetings and a mailbox overflowing with emails, and now you have to respond to the latest incident or request. With over 50 years combined experience at the coalface of newsworthy information requests and data breaches, our data privacy crisis and change management team supports and guides our clients through our strategic approach to responding to individual rights requests for information, complaints from individuals and regulators, and data breaches. We have the tips and tricks up our sleeves, and will share with you the necessary tools and resources to identify and respond to individuals, corporate customers, authorities, or the press. 

Thanks to our experienced multidisciplinary team of litigation lawyers, privacy and security specialists, and crisis management practitioners, you will respond calmly and smoothly to the satisfaction of your internal and external stakeholders. 

Data Sharing and International Transfers

Doing business in today's digital economy, we are reliant on constant transfers of data to connect us to our colleagues, customers, or suppliers. In response, countries impose stricter legal limitations on transfers of personal information to address increased customer concerns on data sharing.  

Our internationally experienced team of consultants will help you to unravel the thread of data transfers to put in place the framework that best suits your organisation. We help our clients to: 

• Create internal frameworks for managing transfers of personal information across the corporate group, such as Intra Group Agreements, Privacy Shield, or Binding Corporate Rules. 

• Negotiate complex international data transfers agreements and data processing agreements.

• Carry out supply chain and vendor privacy and security risk assessments. 

• Review the supply chains' and vendor's compliance with data sharing arrangements. 

Our information sharing frameworks allow our clients to operate seamlessly across borders and to transfer personal information freely and securely to their business partners.  

Health Checks and Audits

For many organisations handling data privacy compliance, the most significant challenges are knowing where to start, deciding which activities to prioritise or assessing whether the existing data privacy program is yielding best results. 

Our data privacy health checks and audits provide a detailed report of our findings on your organisation's current level of compliance against well-established data privacy standards. We present a prioritised recommended action plan to drive your data privacy compliance to your organisation's desired state of data privacy risk maturity.  

Reports from our data privacy health check and audits provide clients with planning and budgeting insights required to make data privacy compliance and digital business improvements. 

Training and Awareness

We provide engaging training and awareness communications to help your organisation bake data privacy into your everyday operations, ensuring that staff understand their roles and responsibilities as it relates to data privacy. 

We offer a variety of training options to suit your organisation's needs in alignment with your existing learning management style. 

We deliver short training courses for your staff designed to provide easy to absorb and highly practical guidance on compliance with your data privacy standards and the value data privacy controls offer to your business.

E-DPO

Rely on our expertise by appointing The Information Collective as your external Data Protection Officer. We will advise you of your data privacy compliance obligations, maintain and update your records, monitor your compliance with the relevant legislation, and act as your point of contact for regulatory authorities. Take advantage of our multilingual expertise, global reach, longstanding experience, and familiarity of liaising with data privacy authorities.

Select one of our e-DPO packages:

• e-DPO 10 (10 hours remote DPO support)

• e-DPO 40 (40 hours remote DPO support)

• e-DPO 60 (60 hours remote DPO support)