- Overview
- Research
- Tools and Trackers
- Glossary
- Global Privacy Directory
- Enforcement Database
- Westin Research Center
- Web Conferences
- Career Central
- Privacy Vendor Marketplace
Introduction to Resource Center
This page provides an overview of the IAPP's Resource Center offerings.
Contact Resource Center
For any Resource Center related inquiries, please reach out to resourcecenter@iapp.org.
IAPP Privacy Vendor List
From legal advisers and insurance companies to information technology services and software, businesses must work with a large collection of vendors from a variety of disciplines to reach their privacy goals. The ever-growing IAPP Privacy Vendor List offers information on organizations that can help you protect data, meet regulatory requirements, respond to breaches, set policies and more. This list aims to serve as a complimentary resource for IAPP users.
Don’t see yourself on the list? We would appreciate hearing from anyone who would like to be included. If you are interested, please send an email to resourcecenter@iapp.org.
Companies do not need to be IAPP members or pay a fee for this listing.
This IAPP Privacy Vendor List is separate from the IAPP "Privacy Tech Vendor Report."
The information found in this listing is self-reported by the vendor. The IAPP does not undertake to independently verify the veracity or accuracy of the information, so users of this tool should make appropriate inquiries of their own. The IAPP is not liable or responsible for the vendors' representations.
Find a Vendor
-
Select Countries
Additional Resources Afghanistan Aland Islands Albania Alberia Algeria American Samoa Andorra Angola Anguilla Antigua and Barbuda Argentina Armenia Aruba Australia Australia – New South Wales Austria Azerbaijan Bahrain Bangladesh Barbados Belarus Belgium Belize Benin Bermuda Bhutan Bolivia Bonair Saint Eustachius and Saba Bosnia and Herzegovina Botswana Brazil British Virgin Islands Brunei Bulgaria Burkina Faso Burundi Cambodia Cameroon Canada Cape Verde Cayman Islands Central African Republic Chad Chile China Colombia Comoros Cook Islands Costa Rica Croatia Cuba Curaçao Cyprus Czech Republic Democratic Republic of the Congo Denmark Diego Garcia Djibouti Dominica Dominican Republic Ecuador Egypt El Salvador Equatorial Guinea Eritrea Estonia Eswatini Ethiopia Europe Falkland Islands Faroe Islands Fiji Finland France French Guiana French Polynesia French Southern and Antarctic Lands Gabon Gambia Georgia Germany Ghana Gibraltar Greece Greenland Grenada Guadeloupe Guam Guatemala Guernsey Guinea Guinea-Bissau Guyana Haiti Heard Island and McDonald Islands Honduras Hong Kong Hungary Iceland India Indonesia Iran Iraq Ireland Isle of Man Israel Italy Ivory Coast Jamaica Japan Jersey Jordan Kazakhstan Kenya Kiribati Kosovo Kurdistan Kuwait Kyrgyzstan Lao Peoples Democratic Republic Latvia Lebanon Lesotho Liberia Libya Liechtenstein Lithuania Luxembourg Macau Macedonia Madagascar Malawi Malaysia Maldives Mali Malta Marshall Islands Martinique Mauritania Mauritius Mayotte Mexico Micronesia Moldova Monaco Mongolia Monserrat Montenegro Montserrat Morocco Mozambique Myanmar Namibia Nauru Nepal Netherlands New Caledonia New Zealand Nicaragua Niger Nigeria Niue North Korea Northern Mariana Islands Norway Oman Pakistan Palau Palestinian Territories Panama Papua New Guinea Paraguay Peru Philippines Poland Portugal Puerto Rico Qatar Republic of the Congo Reunion Romania Russia Rwanda Saint Barthelemy Saint Kitts and Nevis Saint Lucia Saint Martin Saint Pierre and Miquelon Saint Vincent and the Grenadines Samoa San Marino Sao Tome and Principe Saudi Arabia Senegal Serbia Seychelles Sierra Leone Singapore Sint Maarten Slovakia Slovenia Solomon Islands Somalia South Africa South Georgia and South Sandwich Islands South Korea South Sudan Spain Sri Lanka Sudan Suriname Svalbard and Jan Mayen Swaziland Sweden Switzerland Syria Taiwan Tajikistan Tanzania Thailand The Bahamas Timor-Leste Togo Tonga Trinidad and Tobago Tunisia Turkey Turkmenistan Turks and Caicos Islands Uganda Ukraine United Arab Emirates United Kingdom United States Uruguay US Virgin Islands Uzbekistan Vanuatu Vatican City Venezuela Vietnam Wallis and Futuna Western Sahara Yemen Zambia Zimbabwe
-
3PHealth
3PHealth is a communications platform for health enterprises and their users, providing privacy and s curity solutions for the transfer of sensitive personal health information, not only between a primary care physician and her patient, but between the patient’s mobile device and connected medical devices. 3PHealth’s platform also manages patient consent to help users control the collection, flow, use, and assignment of their private data. Its technology also allows users to users to fine tune their sharing preferences in a secure fashion.
-
413data, Inc.
413data, Inc. is a management consulting firm focused solely on providing practical solutions for privacy and data protection issues. Our core service offerings include the following:
- Program development.
- Current state assessment.
- Data breach management.
- Training and awareness.
- Policy management.
- Privacy/data protection impact assessment.
- Third-party management.
- Data mapping and inventorying.
-
4A Security & Compliance
Briefly, 4A Security & Compliance is a global cybersecurity and compliance firm. With years of experience conducting information security and compliance assessments, 4A has developed a quantitative approach to the analysis of cyber risk that helps organizations prioritize security investments and strategies for risk management across the enterprise.
-
4Thought Marketing
4Thought Marketing is a marketing automation and privacy compliance agency.
Privacy compliance is a marathon, not a sprint. And companies must be ready for both existing privacy laws, as well as those on the horizon. By combining our privacy consulting practice and our 4Comply.io privacy compliance application programming interface solution, we help companies stay compliant while maximizing their marketing potential.
Building an in-house privacy compliance framework from scratch requires specific expertise and is resource-intensive. Using 4Comply, our privacy compliance framework, we help companies design and build a flexible compliance solution that works any system.
Our privacy compliance consulting practice includes:
Complete solution delivery
Our full system development services will manage your entire consent management and data subject request project.
Staffing and skills gap
Add privacy experts, analysts, project managers and developers to work alongside your team.
Training and support
Jumpstart your compliance project working with expert training and support options.
-
Abraxas Worldwide
Abraxas Worldwide provides tailored records and information management solutions that help customers turn records into business knowledge. As a strategic partner, we safeguard their intellectual property and provide rapid access to information. We also help our clients produce the records needed to comply with their legal, tax and regulatory obligations.
-
Absio Corporation
Absio offers an easy-to-implement, cross-platform technology that enables applications, services and websites to automatically produce and manage encrypted data everywhere, all the time, by adding a few simple lines of code. Absio’s software-defined, Serverless Encryption™ technology functions across platforms and devices without requiring connection to a central server, providing strong data security without sacrificing data mobility or availability. Multi-language software development kits (SDKs) enable developers to easily integrate PKI-based authentication and data-level encryption into new and existing software. No need to manage keys and certificates, add hardware, or rely on a third-party service.
-
Accenture
Accenture is a leading global professional services company, providing a broad range of services and solutions in strategy, consulting, digital, technology and operations.
We develop and implement technology solutions to improve our clients’ productivity and efficiency—and may run parts of their operations on their behalf. Ultimately, we enable our clients to become high-performance businesses and governments.
-
Access
Virgo is the corporate source of truth for information lifecycle decisions used by in-house legal departments, corporate records managers, and data privacy specialists. We research every global law concerning your corporate record-keeping obligations and elegantly present this in our highly regarded retention schedule application Virgo. As a SaaS application hosted on AWS, we have changed the paradigm so you can deliver retention policy updates in real-time via our unlimited-use employee portal and RestAPI.
-
AccessPrivacy
AccessPrivacy's service offering includes a broad range of consulting services as part of our approach to practical information management solutions. We recognize the operational challenges that organizations face when developing a compliance program that protects their reputation and stakeholder trust. We offer solutions that are best-in-class, scalable and, most importantly, consistent with the unique business needs of the organization. We help organizations implement their privacy solutions, assisting with practical strategies for corporate-wide adoption and business integration. Our cross-sectoral experience allows us to infuse our consulting solutions with the best practices from every sector. Some of the areas on which we provide advice and guidance are:
- Data Governance.
- Benchmarking/Environmental Scans.
- Risk Management.
- Breach Management.
- Records Management.
- Outsourcing and Vendor Management.
- Other Privacy Risk Related Areas.
-
Achieved Compliance Advocacy
Achieved Compliance offers a suite of privacy and data protection solutions designed for the average business professional; no expertise required. We help organizations comply with the EU General Data Protection Regulation and other accountability laws, while building a culture of data protection across the organization.
- Implementation services: Consulting to help you implement compliance that honors personal data rights.
- Article 27 representation: Record maintenance on our SharePoint platform with access to requests and reports.
- Virtual data protection officer: Oversight that informs organizations of their obligations under the GDPR.
-
Actecil
Expert Conformité RGPD, ActeCil accompagne depuis plus de 10 ans, les organismes publics et privés dans la mise et le maintien en conformité des données à caractère personnel.
Actecil propose une offre complète pour apporter des solutions clés en main à ses clients :
- Mise et maintien en conformité au RGPD
- Accompagnement du DPO
- Audit, Etat des lieux, diagnostic
- DPO externe / DPO Mutualisé
- Logiciel de Gouvernance RGPD
- Formations / E-learning
- E-assistance
-
activeMind AG
Data protection services:
Within the framework of technical and organizational data protection, we support companies and organizations in fulfilling the legal data protection requirements with regard to personal data. Companies and organizations can appoint activeMind AG lawyers as external data protection officers or use several services and training in the area of data protection.
Data security services:
We support companies and organizations in Germany in the area of data, information and IT security in preparing for successful certification or conduct a corresponding audit. ActiveMind AG assists companies and organizations in conceiving and implementing a functional information security management system.
-
activeMind.legal
activeMind.legal is a specialized law firm with offices in the United Kingdom and Germany and has a wealth of data protection and information security knowledge.
We provide the following services for companies operating in the EU, EEA and/or U.K.:
- Legal advice
- Consulting services
- External data protection officers (DPO)
- EU representative services
- U.K. representative servicesWe have a team of internationally trained legal professionals offering support in a number of languages. In collaboration with activeMind AG, we draw upon information security professionals to offer comprehensive, holistic data protection advice.
For more information please contact us: anfrage@activemind.de
-
ActiveNav
ActiveNav is a data privacy and governance software provider. With ActiveNav's software, organizations and entities can map, clean, classify, quarantine and delete sensitive, redundant, obsolete and trivial data. Hundreds of leading companies and government agencies trust ActiveNav to help them control sensitive data and support compliance with various data privacy regulations such as the California Privacy Rights Act, California Consumer Privacy Act, and EU General Data Protection Regulation. ActiveNav Inc. is headquartered in the Washington, D.C. metro area and has offices in Europe and Australia. For more information, visit ActiveNav.com or follow the company on Twitter and LinkedIn.
-
Acumin Consulting Ltd.
Established in 1998, Acumin is a cyber security and information risk management recruitment specialist with a global reach. We have developed an extensive breadth of knowledge across all requirements in our space, encompassing end user, consultancy, systems integrator, and vendor organisations.
Our recruitment services can be completely tailored to your business needs, with our core offerings comprising of permanent, contract, and retained search. Beyond this we have worked with clients to provide team moves, European market entry, and outsourced recruitment services.
-
Admeet
Admeet offers EU General Data Protection Regulation and ePrivacy compliance solutions for businesses with a focus on transparency obligations for websites. Our privacy notices are designed with layers and icons to facilitate transparency and easy access to information by data subjects.
Our lawyer-grade solutions allow companies to easily create and/or manage:
- Tailor-made layered privacy notices.
- Tailor-made layered cookie notices.
- Cookie consent banners to properly inform and collect valid consent from users.
- Installation or blocking of cookies and similar technologies based on user preferences.
- Brand customization of web privacy notices and cookie consent banners.
- Versioning of policies (in HTML and pdf format).
- Compliance of multiple websites through a single interface.
- Policies and cookie consent banners in multiple languages.
- Policy updates based on the latest applicable guidelines and case laws.
- Specific national law requirements.
Our solutions have been developed by certified privacy experts (CIPP/E) and European privacy lawyers.
-
Admiral Insurance Company
Admiral Insurance Group, a Berkley Company, is a wholesale-dedicated excess and surplus lines commercial insurance provider. We specialize in underwriting difficult-to-place moderate to high-risk commercial business looking for creative solutions to new and unusual complex risks. Our lines of business include Commercial Casualty and Professional Liability.
-
AdValor Privacy Solutions BV
AdValor offers multidiscipline support and consultancy services, implementation of GDPR in small and large organizations, external DPO services, ICT security advice, legal advice and privacy risk management.
-
AhnLab
AhnLab, Inc. offers industry-leading cybersecurity solutions and services for consumers, enterprises, and small and medium businesses worldwide. We deliver a comprehensive security lineup, including proven, world-class antivirus products for desktops and servers, mobile security products, online transaction security products, network security appliances, and consulting services.
-
AI & Partners
Your trusted advisor for EU Artificial Intelligence Act compliance. Unlock the full potential of AI while ensuring compliance with the EU AI Act by partnering with AI & Partners, a leading professional services firm. We specialize in providing comprehensive and tailored solutions for companies subject to the EU AI Act, guiding them through the intricacies of regulatory requirements and enabling responsible and accountable AI practices. At AI & Partners, we understand the challenges and opportunities that the EU AI Act presents for organizations leveraging AI technologies. Our team of seasoned experts combines in-depth knowledge of AI systems, regulatory frameworks, and industry specific requirements to deliver strategic guidance and practical solutions that align with your business objectives.
To find out how we can help you, email contact@ai-and-partners.com or visit https://www.ai-and-partners.com.
-
Aircloak
Aircloak is a young company, headquartered in Berlin, Germany, that developed privacy enhancing products based on patented technology. The solution is an add-on to any database containing sensitive information that completely prevents that Personally Identifiable Information to be retrieved through analysis, either by accident or on purpose. It improves the quality of analytics insights without requiring masking/anonymization of the raw data, reducing the cost of compliance in the process. Our customers include communications providers, media organizations and communications companies.
-
Aird & Berlis LLP
The Aird & Berlis Privacy & Data Security Group delivers practical solutions to privacy (including health information privacy), data protection and data security issues within a global environment and advises on how the related laws impact domestic and international commerce.
-
AKD
We advise on a broad range of (inter)national privacy, data protection and security matters, including:
- General compliance (policies and procedures, processing for HR purposes, CRM strategy and direct marketing, etcetera).
- Information security and cybercrime (data breaches, ransomware, etcetera).
- International data transfers.
- Intra-group agreements.
- Cloud contracts.
We assist our clients in privacy and data protection litigations and before supervisory authorities.
-
Akin Gump Strauss Hauer & Feld LLP
Akin Gump’s cybersecurity, privacy and data protection practice understands the unique needs of businesses and has extensive experience helping clients navigate the myriad government regulations pertaining to data privacy and security.
Our areas of focus include:
- Data Breach Response and Related Litigation.
- Health Information Privacy and Security.
- Government Relations.
- Employee Data Privacy Advertising, Marketing and Sales.
- Communications and Information Technology.
- Financial Data Privacy.
- Disclosure of Information to and by the Government.
- Litigation.
-
Akkade
Akkade assists organizations in ensuring compliance with European and international privacy and data protection legislation.
-
Alation
Alation is the first enterprise data catalog built for collaboration. It is used by people such as data consumers — data analysts, data scientists, business users; data curators — stewards of data, or data governors; and data creators — typically IT administrators who manage the storage, integration and dissemination of data.
-
Alcoam by Design
Alcoam by Design is a service company specializing in the protection of personal data and data engineering operating in the field of health, research and innovation. We aim at operationalizing the EU General Data Protection Regulation compliance of your processing of personal health data through an expert service, including compliance diagnostic, data protection officer as a service, processor audit; ISO/IEC 27001 and ISO/IEC 27701 audit, clinical research hotline, privacy by design innovation, data protection impact assessment, compliance of data transfers outside the EU, training, and awareness-raising plans. We have expertise in risk management methodologies, such as data privacy impact, risk-based quality management (ICH Q9/E6/E8), and information security management. Our team is composed of senior and certified consultants and is developing according to two dimensions: multidisciplinary, and focus in the domain of research and health. We have work experience with academics, pharmaceutical industry, biotech and contract research organizations. Our specialty areas are research, health care and biobanking. We are mastering, however, the other data-processing operations related to fundraising, marketing, communication, websites and HR.
-
Aleada Consulting
GDPR Readiness
- Gap assessments.
- Control framework.
- Actionable compliance roadmaps.
Global Data Transfer Strategy
- Privacy Shield assessment and certification.
- Data localization compliance (Russia, APAC, EMEA, Australia, New Zealand).
Data Protection Officer (DPO) Services
- DPO placement and referral.
- Contractual DPO services.
Privacy and Data Protection Program Development
- Program operationalization.
- Legal and control frameworks.
- Training and awareness.
Privacy and Data Protection Risk Management
- Web, mobile, and cloud compliance.
- Privacy Impact Assessments, gap assessments.
- Information lifecycle management.
Information inventory and data maps
- Service provider due diligence and compliance.
- Privacy due diligence in M&A transactions.
-
AlertEnterprise
AlertEnterprise uniquely eliminates silos and uncovers blended threats across IT Security, Physical Access Controls and Industrial Control Systems for true prevention of insider threat, fraud, theft, sabotage and acts of terrorism. AlertEnterprise delivers Enterprise IAM, industry-specific Operational Compliance Management, as well as Situational Awareness with continuous monitoring and incident management for an effective response to critical threats and protection of critical infrastructure for various sectors, including pharmaceutical/health care, utilities, oil and gas, airports, federal agencies, and many other industries.
-
ALG Manousakis Law Firm
Our Company follows a simplified approach in providing a complete portfolio of data protection (GDPR) compliance services and externalized DPO services.
More specifically, we provide:
Compliance Services
- Data mapping and GDPR record-keeping.
- Gap analysis.
- Remediation, Compliance Action Plan and implementation.
Data Protection & Privacy Documentation
- Privacy policies and statements.
- Standard operating procedures (SOPs).
- Contractual templates.
- Security measures (technical and organizational).
Data Protection Officer Dedicated Services
- Compliance audits.
- Training and awareness.
- DPA inquiries and data subject requests.
- Support for privacy by design and default, implementation of security measures, DPIAs, and contracting processing activities.
-
AlgoSec
Through a business-driven approach, the AlgoSec Security Management solution intelligently automates and orchestrates network security policy management to make enterprise organizations more agile, more secure and more compliant. With AlgoSec, you can automatically discover, map and migrate business application connectivity, proactively analyze risk from the business perspective, tie cyberattacks to business processes, and process network security changes with zero-touch — across any cloud, SDN and on-premise networks.
-
Allen & Overy LLP
Allen & Overy is a legal firm that supports its clients’ international strategies by combining its international resources and sector expertise to work on cross-border transactions directly in the markets and regions important to its clients.
-
Allianz
Allianz Global Corporate & Specialty is a leading global corporate insurance carrier and a key business unit of Allianz Group. We provide risk consultancy, property-casualty insurance solutions and alternative risk transfer for a wide spectrum of commercial, corporate and specialty risks across 12 dedicated lines of business.
-
Allied Boston Consultants India Pvt. Ltd.
Allied Boston is providing consulting services in information privacy that essentially deals with helping organizations determine the right of control on how personal information of its employees and individuals associated with their organization is collected and used.
Using the ISO 27701 standard as the framework for integrating information security controls as per ISO 27001 standard and mapped with other privacy regulations, such as the EU General Data Protection Regulation, U.S. Health Insurance Portability and Accountability Act, California Consumer Privacy Act, etcetera, and the new Personal Data Protection, the privacy management system implementation becomes seamless allowing the integration of future privacy regulations that can come up in any geography of the world.
Our consulting services for implementation methodology of privacy/information security management are:
- Redefining and rearticulating the scope in the organization’s context related to its role as a personally identifiable information controller/joint PII controller/PII processor/third party.
- Assessing PII-related risks and determining the controls to be applied specifically to privacy.
- Establish the governance mechanism specific to privacy management.
- Application/Internet of Things/cyber/cloud security testing and assessment.
- vCISO services.
-
Allied World Assurance Company Holdings, AG
Allied World Assurance Company Holdings, GmbH, through its subsidiaries, is a global provider of insurance and reinsurance solutions. Allied World offers superior client service through a global network of offices and branches.
-
ALPHASEC
Alphasec provides data protection officer as a service, data protection consulting, training, data protection platform, and data protection audits with more than 200 experiences in various businesses. Our team has certificates in CIPP/E, CIPM, CIPT, CISSP, CISA, CISM, FIP. Security, such as penetration testing according to CREST standards, ISO/IEC 27001 standards, and is also certified as a qualified security assessor company from PCI SSC, which can be certified according to PCI DSS standards. We also provide security services, monitoring and incident response.
-
ALPS
ALPS is a lawyers' malpractice insurance company that provides industry-leading coverage to give you the confidence they will be there when you need them. When your insurance company understands what goes into being a successful law firm, you are free to focus on building yours.
-
Alston & Bird LLP
Information is one of your most critical assets. Your business model depends on protecting your data. You need to prepare to safeguard your intellectual property and respond to potentially critical breaches and disruptions.
The lawyers at Alston & Bird help you prepare for, and respond to, privacy, data and cybersecurity challenges. We strive to understand the inner-workings of your company, its technology and data and the value it provides to shareholders and customers. Our multidisciplinary team assists you at every step of the information life cycle, from developing and implementing corporate policies and procedures to employee concerns, representation on transactional matters, public policy and legislative issues, and tough litigation.
-
Alta Associates
Joyce Brocaglia founded Alta Associates in 1986. Today Alta is the most prominent boutique executive search firm specializing in Cyber Security, IT Risk Management and Privacy. Alta has established an unparalleled track record for placing key C-level executives, and building world class teams in various industries throughout the US.
“Most of our clients are seeking an executive who can increase the credibility of their department, influence the culture of the organization and effectively partner, sell and deliver their initiatives globally to diverse businesses with varying risk tolerances. Finding this new breed of executive and building the teams that support them is difficult and that is why companies retain Alta”, says Joyce Brocaglia, CEO of the company.
-
Alvarez & Marsal
A&M is an international professional services firm with over 5,500 employees across 65 offices in more than 25 countries. A&M is known for asking tough questions, listening well and working in close collaboration with our clients. As a result, we provide leadership and problem solving for organizations globally. A&M’s specialist privacy and data compliance services practice supports international clients with ever more complex local, global and cross-border data rules. Led by Robert Grosvenor, the specialist team brings together expertise and experience of advising and supporting leading organizations on all aspects of their data compliance and risk management including:
• Developing and implementing global privacy programs
• Briefing and advising board and senior leaders on privacy, digital ethics and data governance strategies
• Designing governance models, policies compliance roadmaps, control frameworks, assessment plans and toolkits that support complex regulatory change
• Supporting process improvement and leveraging process effectiveness, privacy technology and compliance automation to help deliver operational privacy management including data mapping, risk reporting and data subject rights management
• Providing interim and demand-driven support to privacy professionals around delivery of complex data rights issues, privacy assessments and priority goals
-
Ambit Compliance
Ambit Compliance is an Irish company founded in 2015. We have a highly qualified team of experienced professionals who support organizations in meeting their compliance requirements with the EU General Data Protection Regulation, data protection/information governance and corporate governance regulations. We support organizations in the private, public and nonprofit sectors.
Ambit Compliance provides: GDPR, data protection and information governance; outsourced data protection officer service; EU representation; data protection compliance framework review and development; GDPR and ePrivacy: modular training; data breach crisis management and support; subject access request management and support; data protection impact and risk assessments, and more.
-
American Civil Liberties Union
The ACLU works to expand the right to privacy, increase the control individuals have over their personal information, and ensure civil liberties are enhanced rather than compromised by technological innovation.
-
American Cyber Security Management
American Cyber Security Management is a leader in data privacy, cybersecurity, and secure DevOps. Our mission is to help businesses protect their data from internal and external threats. We offer on-demand assessment, implementation and sustainability services that focus on GDPR readiness and compliance, as well as risk reduction and mitigation. Our experience can help your business through the entire life cycle of change, needed by most organizations, to effectively implement the processes and technologies for compliance sustainability.
-
American International Group, Inc.
We're a global insurance company with operations in more than 80 countries and jurisdictions. We provide a range of insurance products to support our clients in business and in life, including general property/casualty, life insurance, and retirement and financial services through our general insurance, life and retirement, and investments business units.
-
Analytics8
Analytics8 guides clients in the organization and safeguarding of their data through warehouse creation from cloud-based implementations, assessments of current data management and dashboard development and organization.
-
Anekanta Consulting
Anekanta Consulting provides privacy impact and risk assessment services for users of high-risk artificial intelligence technology, backed by our automated global privacy and AI database. We provide early-stage support to organizations developing AI-based products that process personal data. Furthermore, we evaluate and assess the use cases for AIs which may have an impact on the health, safety and fundamental rights of individuals. We align with the EU AI Act, the General Data Protection Regulation, Organisation for Economic Co-operation and Development principles for AI and all global emerging AI and privacy related legislation, regulation and standards.
In addition to our impact and risk services, we undertake confidential research projects which include horizon scanning, scenario planning and competitive research into the emerging technologies which may impact personal data and human rights. Our research services support mergers and acquisitions for companies wishing to develop products, invest or acquire companies which hold specific expertise. The sectors and domains in which we operate include retail, transportation, critical infrastructure, security/cybersecurity, smart cities/buildings and government. The company, through its founder, is an active participant in the development of global standards and governance guidance in the field of ethical and legal AI, biometric processing and board risk mitigation.
-
Angelo Law Firm PLLC
Angelo Law Firm advises businesses about data privacy regulation and cyber liability. We provide assistance with compliance, policies & procedures, data privacy management, business contracts, technology contracts, vendor contracts, and cyber insurance coverage evaluations/disputes.
-
Ankura
Ankura offers the following advisory services related to privacy and data protection:
- Consulting Services
- Consumer Services
- DPO as a Service
- Information Technology
-
aosphere
Rulefinder Data Privacy is provided by aosphere, an affiliate of leading international legal practice Allen & Overy. Available as an annual subscription, Rulefinder is an easy to use online resource that provides practical analysis of data privacy laws across key global markets. The service is designed to help as a cost efficient alternative to bespoke multi-jurisdictional surveys, as a shared resource for global teams, and as a horizon scanning monitoring service. aosphere’s dedicated team of senior lawyers identified key questions and scenarios for local counsel to consider, including consent, privacy notices, data transfer and localization rules, breach response, service providers, direct marketing and employment scenarios. Analysis is organized by layers of detail — from traffic light color coding and at-a-glance summaries — to source reports and legislation from leading local counsel.
Key benefits include access to a Territorial Scoping Tool, Breach Response App, a Sanctions and a Privacy Developments Tracker, plus a daily monitoring alerting service. Available as an enterprise-wide license, with an optional bank confidentiality/outsourcing module for financial institution subscribers. Find out more and request a free trial: aosphere.com/aos/dp.
aosphere has led the way in delivering legal services differently since 2001. Today, more than 600 organizations subscribe to one or more of our market-leading subscription services.
-
Apex Privacy
Our data protection officer service is the most effective way for you to comply with the EU General Data Protection Regulation. Appoint us as your DPO, and we will get to work straight away. We use our tried and tested GDPR compliance obligations process to streamline your compliance program. We understand not every company has the need for a full-time DPO so our solution is designed to scale with your needs.
-
Apgar & Associates
The only way to create a culture of compliance is to make its practice an ongoing process, not a one-time project. With our subscription-based compliance consulting service and supporting cloud technology, you can create the compliance-based environment that helps you succeed.
Our monthly compliance consulting subscription program places privacy expertise for secure information within your reach.
-
APIMS Limited
APIMS is a privacy management software as a service solution aimed initially at small- and medium-sized businesses and charities in the U.K.
APIMS for Schools is a separately branded product for individual schools and multi-academy trusts/groups of schools.
APIMS for data protection officers enables DPO service providers to manage multiple clients on a single platform via the DPO Bridge, from where they can access each client's APIMS instance.
-
Arcad
Arcad has several software solutions for helping organizations with their data. Their Datachanger software helps a company with data configuration management. It identifies and maintains a list of configuration data and packages them into different versions. It builds audits for the data, and lets users see what data elements were changed, the before and after of the changes, who changed the data, and when. The company’s DOT Anonymizer allows testers to safely extract production data for testing.
-
Arch Insurance Group Inc.
Arch Insurance is a market-leading insurer in the U.S. We provide a wide range of property, casualty and specialty insurance for corporations, professional firms and financial institutions across the U.S.
-
Ardent Privacy
“Marie Kondo for your enterprise data.” Ardent is a data minimization company in the privacy technology space with the mission to reduce data and minimize business risk. Ardent empowers enterprises to efficiently comply with the California Consumer Privacy Act, EU General Data Protection Regulation and U.S. Federal Information Security Management Act while reducing the enterprise risk. We provide nimble, easy-to-use and high-speed data minimization solutions to discover, identify, inventory, map, minimize and securely delete personal data. This is achieved using machine learning/artificial intelligence to report on large datasets in hours rather than days.
-
Arent Fox LLP
Arent Fox’s interdisciplinary team of privacy, cybersecurity and data protection attorneys handles the full scope of data security and protection issues. We serve a broad range of clients navigating big data today in spaces as diverse as health care, nonprofits and trade associations, telecommunications, retail, consumer products, gaming and entertainment, and media.
-
Ark.
We provide GDPR/data protection services, including DPO as a service, systems setup audit, system management and training.
-
Armor
Armor is a cloud security company that takes the complexity out of protecting your data, whether it resides in a private, public, or hybrid cloud or in an on-premise IT environment. We provide managed security solutions that give you a clear picture of threats facing your organization. This allows us to provide you with the people and security resources to stop attacks before they happen and react quickly and effectively when they do, keeping your data safe and compliant. Wherever you are on your cloud journey, Armor can help. We make cybersecurity simple.
-
Armstrong Teasdale LLP
Whether a company is facing a serious dispute, seeking to protect newly developed intellectual property, contemplating how data can be commercialized and how it must be secured, confronting the potential for intellectual property infringement, intending to implement and deploy an enterprise-wide technology solution, or capitalizing on an investment in an emerging technology or a market leader, Armstrong Teasdale has a proven track record of success to fit your legal needs. Our attorneys are well prepared to help navigate complex and novel legal issues as technology continues to rapidly change.
Including:
Technology transactions.
Technology litigation.
Intellectual property.
Privacy and data security.
-
Arnall Golden Gregory LLP
Arnall Golden Gregory, a law firm takes a “business sensibility” approach when advising clients. AGG provides industry knowledge, attention to detail, transparency and value to help businesses and individuals achieve their definition of success. AGG’s transaction, litigation, regulatory and privacy counselors serve clients in health care, real estate, retail, fintech/payment systems, global commerce/global mobility, government investigations, life sciences and logistics and transportation.
AGG’s privacy practice provides in-depth and comprehensive privacy legal services, including compliance counseling, regulatory representation, litigation, international, data breach and cyber, and congressional representation. AGG’s privacy attorneys not only help our clients anticipate and comply with legal requirements, but we also help our clients who use personal information to mitigate risk and maximize opportunity.
-
Arnold & Porter LLP
Arnold & Porter's Privacy and Data Security practice assists businesses in a wide range of industries, from e-commerce startups to global Fortune 100 companies, in the increasingly challenging task of protecting data consistent with applicable law. We provide data protection counsel to technology and business leaders in connection with the development and use of emerging technology platforms; to clients in the financial services and health industries; and to others involved e-commerce, software development and deployment, telecommunications, government contracting, and a host of other activities. We work closely with our colleagues in the firm's Legislative and Public Policy practice group to ensure our clients are informed of and can appropriately anticipate and respond to developments in privacy legislation and regulation.
-
Arrakis Consulting, LLC
Arrakis provides all aspects of data privacy, security, compliance, audit and remediation services. Additionally, Arrakis can provide assessment services for an upcoming audit to increase visibility and provide targeted areas of improvement. We specialize in reducing risk for regulated environments.
-
Array Networks
Array Networks is pioneering an innovative approach to eliminating this compromise. Our Network Functions Platform combines the best attributes of dedicated hardware, virtualization and software-centric computing to create an environment that provides guaranteed performance for virtual networking and security functions.
-
Arrka Consulting
Established in 2012, Arrka has worked with multiple clients across India and the Middle East, helping them address their Information Risk challenges. Founded by professionals with expertise and experience across different sectors and domains, Arrka has carved a niche for itself since its inception by keeping a sharp focus on addressing its clients’ needs.
Cyber Security
We offer a range of Advisory & Consulting services, Assessments, Compliance Management & Testing services to both organizations.
We help implement ISMS frameworks like ISO 27001 and help manage them on a continual basis.
Our specialised solutions include :
- A service designed specially for SMEs
- CyberNinja™ an awareness solution for end-users.
Data Privacy
We offer Advisory and Consulting Services in this very niche domain being one of the few players with this expertise in India. We help implement end-to-end privacy programs for organizations as well as offer specific services like policy design, privacy testing, PI mapping, etc. Our dedicated privacy assessment centre does privacy testing of mobile applications, web based applications etc. We do privacy training as well and are the first and only DSCI accredited training provider for Privacy in India.
-
Ashcroft Group LLC
The Ashcroft Group approach blends precise legal analysis with business management expertise to serve all facets of our clients’ needs. With a focus on issues of integrity and corporate governance, the firm provides compliance advice, internal investigations, and legal and consulting services, including a focus on privacy and data protection.
Privacy and Data Protection
These services are tailored to our clients’ needs — from preparation of data minimization, records management and retention scheduling projects to monitoring employee issues, identifying risk in new products and services to advising on breach escalations, notifications to regulators, and law enforcement investigations. We work with general counsel, chief technology officers, chief privacy officers and risk officers and other executives to identify risk strengthen compliance and secure a range of enterprise systems and networks containing protected personal and proprietary data.
-
Atea Sverige AB
Atea provides DPO as a service, GDPR consulting and education to meet compliance requirements, a complete array of secure software and applications ranging from AV to datacenter on-premises or in cloud/hybrid solution. In addition, we offer penetration testing and cyber security solutions. Atea is a one-stop shop for your security needs.
-
Attorneys-At-Law Borenius LLP
As a firm, we believe in a strong, unified corporate culture where all practices and practitioners share the same values, mission and strategy. This means we constantly focus on building and maintaining capabilities, enabling us to assist and advise clients with complex cases in a highly competitive business environment. We want to help our clients change the business landscape, and in doing that, we work closely with law firms around the globe that value the same attributes and get retained by high-end clients for the same reasons.
Our long-term success is built on professional excellence and international experience combined with uncompromising integrity and ethics. But we do not succeed alone. That is why each assignment requires us to build the right team of experts for your company. Our innovative approach to legal challenges and a strong commitment to the team enables us to assist you in the most demanding cases.
-
Audittrail
Audittrail is an auditing and consulting company with expertise in information security, privacy and risk management. Our experts are skilled chief information security officers, data protection officers, legal consultants, auditors and risk managers. We can fulfill the role of EU representative and DPO for European and non-EU organizations. Audittrail offers a broad range of (awareness) products, such as phishing tests, workshops and compliance management tools. We can help organizations that have yet to implement the EU General Data Protection Regulation, those who have to deal with multiple jurisdictions and frameworks, and can help you assess your maturity levels in every aspect of privacy legislation.
Information security has a strong connection with privacy and the GDPR. However, these are two different fields of expertise, which require different knowledge and capabilities. And both need to been seen in the wider context of risk management and business continuity. We have the expertise needed to bring those fields together through consultancy, tools, audits and tests.
Our Compliance Management Framework software enables the organization to be in control and fully compliant on the topics of GDPR, infosec, business continuity and risk management in a practical way.
-
Authernative, Inc.
Authernative is a developer of cutting-edge user authentication solutions backed by a strategic and industry leading 31 patent IP portfolio and Government certified technologies. Authernative’s innovative platform of authentication solutions provides new critical and strategic end-to-end security features and capabilities that uniquely solve today’s authentication and credential security challenges.
Authernative’s authentication technologies offer a consistent user experience across any platform or device, along with scalable security levels and a low TCO, enabling unique opportunities to protect and expand online and mobile services for consumers, enterprises and government.
-
Auto-Owners Insurance Group
Auto-Owners Insurance Group is among the nation’s largest insurers and offers multiple lines of insurance, including life, home, auto and business.
-
Automated Intelligence
Automated Intelligence provides software and services that enable enterprises to manage their data throughout its lifecycle. Its analytics tool can analyze and categorize enterprise data to locate potential risk, duplications, and securely prepare it for migration to cloud services. Automated Intelligence can also provide insights that allow companies to identify and mitigate risks in order to help comply with the EU General Data Protection Regulation. This is done by identifying “personal data” in structured data sets and workflowdriven approaches for an audit trail throughout the data lifecycle. It can also develop automated processes for on-going GDPR compliance.
-
AvePoint, Inc.
AvePoint offers numerous solutions to ensure companies are in compliance with regulations. Its data governance solution allows companies to maximize their compliance efforts by integrating polices to actively enforce data governance, while using different tools to minimize compliance risks. Its compliance solutions monitor and report on the actions and safeguards a company has implemented to prove their policies are in compliance. The solution lets companies export action reports to highlight process to C-suite executives and legal professionals. Its management tool allows companies to automate the process of detecting and responding to out-of-policy changes as they occur.
-
Axia
The Axia Payments Merchant Services program covers the entire spectrum of your payment needs. In turn, you can focus on your business while we build and manage your payment program to give you the most from every transaction.
-
Axiom
Axiom is the recognised leader in the business of law. We employ over 2,000 lawyers, legal professionals, process engineers, and technologists to deliver legal, contracts, and compliance solutions to the Fortune/FTSE 100.
We empower in-house legal teams to manage regulatory change more effectively. Supporting the world’s largest financial services institutions, we have completed dozens of major regulatory contract remediation projects over the last couple of years.
Axiom partners with its clients to devise thoughtful, process-driven, and tech-enabled solutions. With the GDPR deadline fast approaching, we are keen to share market insights, and to encourage innovative discussion around delivering best-in-class compliance
-
Axis Capital
Consulting Services
Here, specialty insurance and reinsurance are practiced differently. Passionately. With vitality.
In a world that’s ever-changing, it’s the companies that are efficient yet adaptable and collaborative yet fearless that are built to succeed. At AXIS, we embrace this challenge by bringing our breadth and depth of experience to bare, coupled with modern analytics, sound financials and a client-centric focus. We’re a leading specialty insurer and reinsurer, with offices in key international markets, including underwriting through a Lloyd’s Syndicate.
Clients do not receive off-the-shelf solutions. We begin each engagement by having a conversation with our clients. Getting to know their unique issues. And, crafting bespoke solutions to meet their special needs. The relationship doesn’t end there.
AXIS employees are empowered to make critical decisions quickly and decisively, allowing our clients to pivot swiftly in response to fast-moving market conditions. And, our streamlined claims process provides policyholders superior service.
Our product diversity and geographic reach allows us to adapt to market conditions throughout the insurance cycle. We’re not afraid of taking on complex and volatile lines—mitigating risk with advanced predictive and optimization modeling. And, we’re highly capitalized—the depth of our balance sheet is among the best in the industry.
There’s an energy here. It’s driven by a company built on a solid foundation and multifaceted by design. We’re AXIS, standing at the intersection of stability and vitality.
Cyber Liability Insurance
Cyber breaches cost the global economy billions of dollars each year and present a constantly-evolving risk of business disruption and reputational damage.
We offer risk transfer, market education and crisis management products to a broad range of businesses around the world. We partner with leading research institutions to better understand the changing threat landscape and ensure our solutions meet the needs of our clients in the immediate and longer term.
-
Azure Data Protection Consultants
Pragmatic and Strategic Consultation on Privacy and Data Protection. We help our clients strategize effectively by using privacy as a differentiator in order to optimize market outcomes while remaining compliant. We work as your extended team and not just as a typical consultant. We are committed to making privacy and data protection a business advantage rather than a legal compliance issue. We remove legal bias from data protection. We believe respecting user privacy is good business. In an ever-connected, data-powered, information economy, we enable our clients to strategize, plan and implement pragmatic data protection programs. We enable our clients to balance their data protection obligations in a constantly evolving regulatory environment with their business goals. Whether you’re seeking a strategic alliance with the right partner or a special skillset or tool, call us today. Our promise is that we’ll be there, as questions or issues arise, every step of the way.
-
Backbone Consultants
Backbone Consultants’ data privacy services deliver the expertise necessary to comply with domestic and international privacy regulations. Our team of certified information privacy professionals evaluates your privacy risk posture and assists in the implementation or enhancement of your company’s privacy program. Backbone's specific data privacy related service offerings include but are not limited to: EU-U.S. Privacy Shield, Privacy impact assessments, HIPAA & HITRUST compliance, Gramm-Leach-Bliley Act, body worn camera implementations, SOC2 privacy principle, social media governance, IT governance policies, and GDPR compliance services.
-
Baker & Hostetler LLP
BakerHostetler, one of the nation’s largest law firms, represents clients around the globe. With offices coast to coast, our more than 940 lawyers litigate cases and resolve disputes that potentially threaten clients’ competitiveness, navigate the laws and regulations that shape the global economy, and help clients develop and close deals that fuel their strategic growth.
-
Baker Botts LLP
As a full-service law firm, we strategically examine and constructively consider how to proactively protect our technology clients' interests, helping them manage intellectual property, execute transactions, handle litigation, and go beyond the law to provide creative business solutions.
-
Baker McKenzie LLP
Our global privacy practitioners understand the interplay of privacy requirements with labor and employment laws, consumer protection laws and other local laws. We advise on privacy policies, data storage, retention and destruction, privacy complaints and investigations, disputes, data access requests and transfer and disclosure agreements. We also conduct multi-jurisdictional reviews of the collection, use and transfer of data.
-
Baker, Donelson, Bearman, Caldwell & Berkowitz PC
Baker Donelson advises clients on a full array of legal and business issues associated with data protection, privacy and cybersecurity. Our team of more than 30 data protection, privacy and cybersecurity attorneys, including lawyers with Certified Information Privacy Professional (CIPP) and Certified Information Privacy Manager (CIPM) certifications, counsels clients throughout the world.
-
Balch & Bingham LLP
Balch & Bingham LLP is a corporate law firm. We are recognized for our deep experience serving clients in regulated industries, including energy, financial services and health care, and our established practices in business, environmental, government relations, labor and employment and litigation.
With data breaches dominating the headlines, cybersecurity is a top concern for corporations that utilize technology or cloud-based solutions to store or manage data or sensitive information integral to the business. Our attorneys work with clients to proactively protect data in an effective, safe and compliant manner. In the event of compromise, we work with clients to respond to the issue appropriately and in compliance with privacy and data regulations.
-
Ballard Spahr LLP
We provide results-driven counsel and exceptional service in litigation, business and finance, real estate, intellectual property, and public finance.
Our team of attorneys across the country works with clients — leveraging industry vendors when needed — on the development and implementation of programs and training protocols to identify and avoid risk. We offer comprehensive guidance on compliance and information governance, help clients assess and manage vendors, and advise on the many privacy and data security-related issues that can arise during transactions.
-
Barclay Simpson
Established in 1989, Barclay Simpson is the leading corporate governance recruitment consultancy. Throughout the UK, from our office in London, we recruit permanent and interim internal and IT audit, risk security and resilience, compliance, legal, and treasury professionals across all economic sectors.
Our strength lies in the degree of understanding and depth of experience of our consultants in these distinct but interrelated disciplines. Our consultants are specialists who build their knowledge on a long term basis. This enables us to provide a uniquely informed and consultative recruitment service.
-
Barracuda Networks
Barracuda was launched to give businesses an email-security solution that didn’t cost a small fortune. With more than 1 million cloud-enabled products delivered since, we continue to disrupt the IT-security market with innovative solutions that every business can afford. We’re on a mission to protect customers, data and applications from today’s advanced threats by providing the most comprehensive and easy-to-use IT-security platform and backing it up with best-in-class customer support.
-
Barran Liebman LLP
At Barran Liebman, our experienced and dedicated attorneys focus on representing employers and providing solutions to our clients' employment law and labor management needs. Our attorneys specialize in five areas, including employment advice, employment litigation, higher education compliance and litigation, labor relations and employee benefits. We represent employers of all sizes throughout all industries regarding employment matters, such as sexual harassment, collective bargaining, and wrongful discharge, to name a few.
With advancements in technology and data collection methods, as well as an ever-increasing monetary value placed on personal data, employers are at greater risk for data breaches than ever before. To further complicate matters, factors such as telecommuting, accessing work from personal devices, improper data disposal, and other flaws in security protocols put employers at an even greater risk for malicious hacker attacks, as well as inadvertent breach. Barran Liebman counsels employers on a wide scope of data protection best practices, as well as post-breach response.
-
Basham, Ringe y Correa
Basham, Ringe y Correa is a full service law firm in Mexico with a highly specialized practice in IT and data protection. Basham provides advice in all areas and matters related privacy and data protection, e.g., privacy policies, security measures, data breach notification and response, audits, data transfers, and we may also act as data protection officers in Mexico, to facilitate compliance with this obligation under Mexican laws.
-
Bauhaus ArtiTech
Bauhaus ArtiTech is an ICT consulting firm based in The Netherlands. Besides various consulting tasks such as program management, data center migrations, architecture services we also help our customers in the road to GDPR compliance. For the smaller companies or companies that yet have to select or train their own data protection officer we offer a data protection officer as a service. Flexible or fixed days can be arranged.
CIPP/E, CIPM and CIPT certified officers will provide the customer with the various tasks a DPO has.
-
Baycloud Systems
Baycloud Systems is the leading provider of consent solutions to international companies enabling compliance with GDPR, ePrivacy, and Do-Not-Track. Our consent platform actively manages cookies, browser storage, and embedded third-parties, as well as the consent request process, with a customised multi-language user experience. Choice is automatically applied to multiple sites, continuously visible, and revocable at any time or automatically after a configurable “sunset” period. As invited experts on the W3C TPWG, we ensured the platform implements the DNT Consent API, enabling the communication of user consent to embedded third-parties. Our browser extension bouncer implements the API while enforcing DNT.
-
BDO LLP
BDO is an independent, sustainably profitable and globally focused firm that services many different areas, including audit and assurance, tax, advisory, and business services and outsourcing.
-
Bearer
Bearer helps companies automate EU General Data Protection Regulation compliance by implementing privacy by design into their product development processes.
Privacy and security teams use Bearer to automatically detect and catalog their engineering resources that are processing data and effectively collect information needed for risk assessment from their teams.
They can easily demonstrate GDPR compliance to auditors thanks to privacy-by-design processes, key performance indicators, audit trails and accurate documentation (record of processing activities, data protection impact assessments, data processing agreement).
-
Beazley
We are a specialist insurer with three decades of experience in providing clients with the highest standards of underwriting and claims service worldwide. Specifically in the area of cyber and executive risk.
Cyber and executive risks are growing harder for companies to manage. Technological, social and regulatory changes all impinge on these risks, and it is critical for companies to partner with an insurer that can keep pace.
-
BeCrypt
Disk Encryption
Secure your data wherever it travels with full disk encryption software.- Protect the data on your device from theft or loss.
- Transparent to the user and easy to deploy and manage.
- Single sign-on, password recovery and optional two-factor authentication.
- Unique pre-boot authentication for touchscreen tablets.
- Secure network authentication - ideal for a desktop estate.
Device Control
Prevent data leakage with Becrypt's port control options.- Enforce policy and controls around the use of removable devices and media.
- Ensure that corporate data cannot inadvertently or deliberately be leaked.
- Full central management, audit and reporting capabilities.
- Fully integrated with Becrypt's Disk & Media Encryption products.
- Reduce data loss and introduction of malware.
Secure Media
Enabling the use of media for flexible data storage and sharing.- Easily encrypt files and folders for transportation or sharing.
- No need for pre-installed software on recipient devices.
- Data is protected from theft or loss.
- Full central management, audit and reporting capabilities.
- Fully integrated with Becrypt's device level port control.
-
Beiyuan Law Firm
As the first China law firm that focuses on data and privacy compliance, Beiyuan Law Firm's competitiveness is developed from its unique technical and academic background. The firm was established on the basis of several technology companies with more than 20 years of history dealing with cybersecurity level assessment, commercial codes and app security tests. In addition, the cooperation with Peking University, on the levels of both strategies and specific matters like standards and guidelines making, energizes the firm with strong academic resources and equips the firm to address complex challenges. The firm is advising a broad range of clients across the world on all aspects of privacy and data protection compliance from complex data compliance strategies to data security breach management ad-hoc supports, which cover the services of data protection impact assessments and audits, data protection officers, data breaches and incident response. Our team is to help navigate the complex landscape of privacy and data protection compliance with pragmatic and timely advice and quick and efficient response, on the basic of a nuanced and unique understanding of the Personal Information Protection Law, Data Security Law and other privacy laws and the attitude of regulators.
-
Bello Consulting
DPO services include but are not limited to the data protection officer tasks as listed out in Article 39 of GDPR, business consultancy related to data protection, and setup and management of a privacy program. Experienced IT, compliance, legal and business (finance, manufacturing, professional services, utilities, and others industries) expertise is available as a part of the service.
-
Bennett Jones LLP
Bennett Jones performs groundbreaking work with governments, employers, institutions, device providers, and public and private information-gatherers, advising on the far-reaching legal implications of privacy regulation, data protection and data dissemination.
Offering both compliance and enforcement advice, we can provide internal compliance procedures and policies for clients ranging from public and private industrial businesses to retail operations, universities, charities, health regions, and ISPs and other entities operating traditional and new media businesses. We train privacy officers on their rights and obligations under the law and provide opinions and direction on specific incidents involving employees, customers, patients, internet users, network providers and data miners whose activities involve the handling of sensitive information.
-
Berkshire Hathaway Insurance
The Berkshire Hathaway Homestate Companies is a group of six insurance carriers that are part of the Berkshire Hathaway group of insurance companies.
We focus on four main insurance products:
-Commercial auto
-Commercial property
-Public entity
-Workers compensation
-
BGBG Abogados
- Adequacy compliance projects for Mexican data controllers and processors.
- Compliance assessment for Mexican data controllers and processors.
- Consultancy and advisory services aimed to provide controllers, processors and individuals expert counseling, consulting, implementation and support services to effectively comply with data protection laws and regulations, within the framework of Article 30 of the Mexican Data Protection Law.
- GDPR compliance for EU data controllers and processors.
- GDPR compliance for non-EU data controllers and processors (Article 3.2 GDPR).
- EU representative services in Spain.
- DPO as a service.
-
BigID
BigID provides automated enterprise software for managing and protecting customer and employee data in the data center or cloud. BigID’s technology combines machine learning and identity intelligence to optimize data discovery, inventory by data subject, and to map data flows across critical business processes. For privacy professionals, BigID simplifies compliance with several GDPR requirements, including data subject rights management, consent tracking, DPIAs, risk analysis and data breach notifications. Other privacy use cases include data residency, crossborder transfer, re-identifiability, data lineage, and retention and minimization analysis. For security professionals, BigID provides breach prevention and response management with integrations for breach detection and enforcement tools for enhanced data protection.
-
Bill of Rights Defense Committee
BORDC is a national non-profit, non-partisan organization working to restore the rule of law and our constitutional rights and liberties. We aim to make police and intelligence agencies accountable to we, the people whom they serve. We support an ideologically, politically, ethnically, geographically, and generationally diverse grassroots movement, focused on educating Americans about the erosion of our fundamental freedoms; increasing civic participation; and converting concern and outrage into political action.
-
Bird & Bird
Bird & Bird is an international law firm with a focus on helping organizations being changed by technology and the digital world.
Our International Privacy & Data Protection Group advises organizations around the world. The group is top ranked in legal directories. Our leading data protection specialists have long-standing practical expertise, including working at data protection authorities.
-
Bird & Bird Privacy Solutions
Bird & Bird Privacy Solutions provides privacy consultancy services to organizations, including data protection officer and GDPR representative services. Our Data Protection Officer service allows clients to rely on Bird & Bird Privacy Solutions as an external DPO in compliance with the EU General Data Protection Regulation. Our GDPR representative service involves acting on the clients’ behalf in the European Economic Area, guiding clients' approach to GDPR compliance when necessary and helping them maintain their records of processing activities as required by the GDPR. It is designed for organizations wishing to comply with the EU representative requirement (Article 27 of the GDPR).
-
Bitfount
Bitfount is a distributed data science platform enabling data custodians and data scientists to collaborate on federated, privacy-preserving data analysis and artificial intelligence/machine learning. It helps make the world's intractable data become safely interactable.
-
BitRaser
Secure, reliable and cost effective data erasure solutions to erase data permanently beyond data recovery scope at end of life cycle of IT assets such as PCs, servers, rack mounted drives, and smartphones. Today organizations need tamper-proof erasure reports to prove successful erasure and comply with legal auditing requirements.
-
BitSight
BitSight offers a security rating platform designed to generate measurements on a company’s security performance on a daily basis, with ratings ranging from 250 to 900. The ratings are generated by the platform using algorithms to analyze prior security incidents and practices and can be used by companies to examine the impact of their risk mitigation efforts, while comparing their progress with rival companies. The platform allows for companies to engage with third parties and company stakeholders to collaborate on risk and data-driven security.
-
BlackCloak, Inc.
BlackCloak, the award-winning provider of concierge cybersecurity and privacy for corporate executives and high-net-worth individuals, has been partnering with cybersecurity and privacy practice groups and in-house counsel across the United States to help protect their clients in their digital lives.
Where corporations cannot monitor their executives in their homes and on personal devices, BlackCloak closes that gap and ensures the executive and their family are protected from cyber threats that can serve as potential points of compromise into the executive’s company. And even for those that are not corporate executives, BlackCloak provides personal protection for those who are at an increased risk for targeting by cybercriminals.
BlackCloak helps you protect executives, board members and key personnel to mitigate hacking, financial and reputational risks to them and their company. Learn more at blackcloak.io.
-
BlackFog, Inc.
"BlackFog provides GDPR privacy and fileless cyberattack defense for real time protection against online threats. Developed as an endpoint detection and response solution, it has been designed to prevent the loss of data using preventative measures and non-signature-based techniques.
BlackFog fills the gap between the current security solutions that focus on preventing access through intrusion detection systems such as firewalls and anti-virus/ malware solutions that remove known infections post discovery. Focusing on non-signature-based threat detection using outbound traffic monitoring it consists of 11 layers of defense against ransomware, spyware, malware and unauthorized data collection and profiling.
-
Blake, Cassels & Graydon LLP
Blake's privacy lawyers have extensive experience in related areas of law, including copyright, entertainment and media, information technology, outsourcing, consumer protection, constitutional law, and regulatory compliance matters. We regularly work with corporations to facilitate the development and implementation of privacy and employment policies, including auditing personal information practices, drafting privacy policies and guidelines, complaint procedures, website information packages, and management training.
-
Blancco
Blancco Technology Group is the de facto standard in data erasure and mobile device diagnostics. The Blancco Data Eraser solutions provide thousands of organizations with an absolute line of defense against costly security breaches, as well as verification of regulatory compliance through a 100% tamper-proof audit trail. Our data erasure solutions have been tested, certified, approved and recommended by 18 governing bodies around the world. No other security firm can boast this level of compliance with the most rigorous requirements set by government agencies, legal authorities and independent testing laboratories.
The Blancco Mobile Diagnostics solutions enable mobile network operators, retailers and insurers to easily, quickly and accurately identify and resolve performance issues on their customers’ mobile devices. As a result, mobile service providers can spend less time dealing with technical issues and, in turn, reduce the quantity of NTF returns, save on operational costs and increase customer satisfaction.
-
Blindata.io
Blindata is a platform focused on personal data management, leveraging high-end technologies like graph analysis and blockchain. Blindata maps processing and disclaimers, as well as applications and systems, then it connects all entities in a graph diagram and highlights non compliances. Blindata helps companies manage data breaches as well as the rights of the data subject, like the right to be forgotten. All functions are available via API, and Blindata can be easily integrated with the different touch-points (websites, mobile apps, CRM) in order to collect consents (given, denied) and build the records of consent on the blockchain.
-
Bloomberg Law
Bloomberg Law has released a privacy and data security tool to help privacy professionals stay up to date on privacy news from all around the world. The news is produced by Bloomberg reporters and editors, and can be seen in a News Activity Heat Map. Privacy professionals have also helped curate profiles on countries from around the world, focusing on key issues, privacy laws, and regulatory frameworks. The tool also has a timeline on major milestones regarding the EU General Data Protection Regulation, and an interactive tool designed to inform privacy professionals on newly passed laws and regulations. The tool gives professionals the ability to compare laws from within the U.S. and other countries.
-
BlueSky Privacy
Headquartered in the U.S., BlueSky Privacy boasts a vast network of privacy specialists across the U.S., Europe and Asia. We're former chief privacy officers, privacy and security specialists, in-house privacy counsel, and other operational privacy and security experts. BlueSky Privacy specialists have decades of real-world privacy compliance experience.
BlueSky Privacy helps companies understand their privacy compliance requirements and can work alongside their legal counsel.
When resources are scarce, our team of highly-seasoned specialists steps in to fill the gaps, ensuring access to expert talent without the complexities of expanding the workforce.
Experience the power of global expertise and unlock solutions tailored to your specific needs.
-
BMI Imaging Systems
BMI Imaging Systems provides HIPAA-compliant document scanning and electronic medical record management, enabling healthcare companies to safeguard patient medical information. BMI’s facilities are not shared with any other entities, are remotely monitored and feature secure access that meets Federal-level NIST SP 800-53 guidelines. Staff is trained in HIPAA compliance and document conversion procedures designed to conform to the paper and data requirements of HIPAA regulations. All sensitive records are secured with document and folder level security, check-in/check-out tracking system, read-only outputs and redaction.
-
Bocada
Bocada is the leading automated backup monitoring and reporting solution. By aggregating performance metrics from on-premises, cloud, and hybrid backup tools and storage devices under a single pane, Bocada simplifies backup operations monitoring, improves failure remediation times and streamlines compliance oversight. Native integrations with ticketing solutions and asset inventory systems support broader IT operations workflow automations and improve overall data resiliency.
-
Boltive
A full 15-20% of consumer opt ins and opt outs fail to transmit between brands, publishers and advertising platforms. This means consumers may be unlawfully tracked by ads they attempt to avoid. Both advertisers and publishers are at higher risk of consumer complaints and regulatory action. Boltive Privacy Guard is the only software that scans and audits data sharing for California Consumer Privacy Act, California Privacy Rights Act and EU General Data Protection Regulation compliance in three risk areas:
1. Failed opt-in and opt-out consent
2. Unlawful personal information sharing
3. Unauthorized data collectors
We verify if your consent management platform is handling requests properly. We review if consent strings are transmitting correctly to your partners. We also investigate third parties skimming data suspiciously. We give you new visibility and save you manual effort at the same time. This solution requires no integration or installation. It can be up and running in a few days. We monitor 100 billion ad impressions per month. Learn more at www.boltive.com.
-
Booz Allen Hamilton
Systems Delivery | Engineering and Sciences | Cyber | Analytics | Consulting
We live to solve problems. It’s just that simple. And we are not afraid of the unknown. For more than 100 years, we have been one step ahead, solving challenges where there were no roadmaps, and investing in the right capabilities, markets, and talents to tackle the emerging issues of our time. Our solutions help clients combat global terrorism, strengthen cyber defenses, transform healthcare, improve efficiency, and manage change.
-
Borden Ladner Gervais LLP
We are an integrated national firm that provides a broad range of legal solutions to our clients. Our group provides advice on every aspect of privacy and data protection, from the collection and management of information to crisis management in the event of a breach, and representation in privacy-related inquiries and litigation, including class actions.
-
Bottomline Technologies
Cyber Fraud and Risk Management
Ensure regulatory compliance and stop fraudulent activity and data theft with protection against cyber-attacks, insider threats, web and mobile fraud, payment fraud, and money laundering.
Healthcare privacy and data security
Following HIPAA and HITECH mandates, create a full cross-application audit trail of end-user access to protected health information, detect unauthorized user behavior in real-time, and replay interactions when needed to help detect and prevent fraud.
-
BRAASC - Abogados, Asesores & Consultores
- Data protection legal services.
- Data protection consultancy services.
-
Bradley Arant Boult Cummings LLP
Bradley is a national law firm with a reputation for skilled legal work, exceptional client service, and impeccable integrity. We provide business clients around the world with a full suite of legal services in dozens of industries and practice areas.
Cybersecurity and privacy are ongoing and pressing concerns for today’s businesses. Information is value. Technology is value. Both can present large risks. The protection and management of information and technology infrastructure are key. Legal decisions are becoming increasingly complex and affect a variety of significant regulatory, transactional, civil liability and reputational risks.
-
BreachRx
BreachRx is SaaS-based software that automatically generates tailored breach response plans in the aftermath of a data breach. The incident response platform helps companies recover from data breaches/cyber incidents more efficiently and in compliance with their regulatory and contractual obligations. Data breach response implicates several business functions, including IT, compliance, general counsel, outside counsel, communications/PR and the C-suite. BreachRx allows all these disparate areas of the business to collaborate on the response in one place, in real-time, and to automate as many parts of the process as possible.
-
Breakwater Solutions
Breakwater Solutions helps mitigate risk and gain insight from sprawling information by combining technology automation and human expertise. Breakwater’s data privacy and protection consulting and software solutions enable organizations to minimize, mitigate, and remediate data risks associated with global data privacy compliance obligations.
The Breakwater team of data privacy professionals are experts in data privacy transformation, improvement and implementation across jurisdictions. We work with clients of all sizes and industries to create customized solutions that address an organization’s unique data landscape and data risk profile. Our expertise adds significant value when an organization faces complicated data privacy obligations, requires assessment and improvement of data privacy programs or technical solutions, or experiences an organizational change such as an acquisition or expansion into new geographies.
Breakwater’s Data Subject Access Request Response software solution helps organizations comply with the EU General Data Protection Regulation, the California Consumer Protection Act, the California Privacy Rights Act, and other privacy regulations. It augments your existing DSAR compliance system by extending your ability to locate and act upon customer data within your enterprise. It searches the unstructured data, which is often found on laptops, file storages, content repositories, and collaboration systems, to help drive insight and compliance.
-
brighter AI
At brighter AI, we provide image and video anonymization solutions based on state-of-the-art deep learning technology. Our solutions — Precision Blur and Deep Natural Anonymization — redact faces and license plates and help you comply with data protection regulations such as the EU General Data Protection Regulation, China's Personal Information Protection Law, the California Consumer Privacy Act and Japan's Act on the Protection of Personal Information.
We enable companies in various industries to use publicly recorded camera data for analytics and artificial intelligence. With our solution, you can mitigate your liability and the risks of being fined, increase the capacity of your teams, improve your time to market and push innovation.
Learn more about us here.
-
Brit Insurance
The Global Cyber Privacy and Technology team at Brit is one of the markets of choice with a dynamic and experienced Underwriting team, offering cover on both an open market and binding authority basis.
-
Bryan Cave LLP
Bryan Cave Leighton Paisner’s Data Privacy and Cyber Security team is located across the United States and Europe and advise clients in a variety of sectors, including manufacturing, software, travel, financial services and retail.
We focus on one thing — helping our clients utilise data to increase opportunities and enhance user experience, all while decreasing corporate risk.
-
BSI
BSI has a team of data protection and privacy experts who can help you navigate the changing privacy landscape. With a global footprint, we support organizations, large and small, to take accountability and instill trust around managing and protecting information, particularly personal data.
We are innovators in privacy management and related security standards, offer rigorous third-party assessments, deliver in-depth training courses and have a range of consultancy services. This includes outsourced DPO as a service and EU General Data Protection Regulation verification to support with compliance, eDiscovery and forensic capabilities to deal with complex data subject requests and compromised data, cybersecurity testing and advisory support to help spot vulnerabilities and manage data in cloud platforms, and payment card protection to help keep people’s financial data secure. Plus, as an IAPP training provider, we can help you achieve CIPP/E, CIPM and CIPT qualification as a globally recognized privacy professional.Popular standards include ISO/IEC 27001 information security management, ISO/IEC 27701 Privacy Information Management, ISO 22301 Business Continuity Management, ISO 31000 Risk Management and ISO 27017 Cloud Security.
Put protecting individual privacy rights at the heart of your organization by choosing BSI to work with you on your privacy strategy and goals.
-
Buckley King LLP
Buckley King is a full-service law firm that provides solutions-driven legal advice and representation on traditional to complex business matters in all major industries. Our team of lawyers has dedicated their careers to helping individuals and businesses achieve their objectives in a personalized, professional and efficient manner. They are seasoned in all areas of business law, finance, corporate law and transactions, real estate, commercial litigation, bankruptcy, creditors' rights, transportation law, sports, entertainment and media law, and individual and family law.
-
BuckleySandler LLP
Buckley provides privacy and cybersecurity legal counsel that both safeguards the interests of clients and mitigates future risk.
Our attorneys are well versed in the federal privacy and data security laws, including the Gramm-Leach-Bliley Act and the Safeguards Rule, Fair Credit Reporting Act, Electronic Communications Privacy Act, Computer Fraud and Abuse Act, Right to Financial Privacy Act, and CAN-SPAM Act. We also closely track and interpret proposed changes in both federal and state laws with respect to privacy and cybersecurity.
-
Business Legal
Business Legal consists of Data Protection Consultants and Lawyers with over 25 years’ experience. Business Legal provides full service across all data protection needs from multijurisdictional projects for multinational clients, to interfacing with the Data Protection Commission’s office in respect of data breaches by individual firms. Business Legal deals with all matters in a focused, practical, business centred way.
-
CA Technologies
Layer7 Privileged Access Management is designed to prevent security breaches by providing granular authorization of users to systems and accounts, constantly monitoring privileged activity to assess for risk, triggering automated mitigations when higher risk is detected, auditing and recording attempts to access as well as vaulting and rotating the privileged account’s credentials including passwords or key-/token-based authentication.
-
Canopy Software
Canopy is a leader in privacy and data breach software. Our patented technology leverages artificial intelligence and machine learning to find personally identifiable information in any data set. Since 2018, our flagship product, Data Breach Response, has provided incident response teams with fast, accurate and secure analysis of compromised data and identification of affected individuals. It speeds up data breach resolution at every step, from data mining and document review to entity consolidation. Our second offering, Privacy Audit, brings this unparalleled PII detection to the enterprise level, giving companies total transparency around what’s in their data so they can evaluate their business practices and proactively mitigate risk.
-
Capgemini
Capgemini global data privacy and cybersecurity services provide advisory and technology solutions applicable to existing legacy on-premise and new cloud digital systems to address the key aspects of GDPR data privacy and security requirements:
- Data protection assessments and program management.
- Data discovery and data lifecycle management services.
- Consent & data subject’s rights management.
- Data minimization & pseudonymizing.
- Data protection - identity access management, data & database security.
- Breach management & reporting services.
- GDPR assurance services.
-
Carbon Black
We provide an endpoint protection platform to consolidate security and provide you information needed to secure your endpoints, using a single lightweight agent.
-
Carson Inc.
Richard S. Carson & Associates, Inc. (Carson Inc.) is a management consulting firm with almost 35 years experience enabling government organizations and businesses in total integration of information technologies. We provide a broad range of CIO Support & Governance, Cyber Security, Software Development, and Business Analytics services.
Cyber Security
Carson Inc. has been helping its customers fight the battle against cyber threats for more than 22 years. We believe our customers need to find what matters and control what counts. Carson's cyber security customers include both government and commercial enterprises. As a Qualified Security Assessor (QSA) for the Payment Card Industry (PCI) Carson Associates provides PCI QSA Services.Program Management
The strength of Carson’s management consulting expertise lies in our ability to respond to rapidly changing government regulations and initiatives.Software Development
Throughout Carson Inc.’s decades of government contracting, applying technology to facilitate the management of information and decision processing has been a common thread in our work.Business Analytics
Integrating data to bring information to life is what we do. Carson Inc.'s business analytics capability allows our customers to make smarter and faster business decisions to maximize success.
-
Castlebridge Associates
At Castlebridge we support and guide organizations to get better bottom-line value from their managed and trusted data.
Our experienced teams of consultants are highly trained and experienced and stand ready to help your organisation develop your strategies for trusted information, building on foundations of quality, governance, ethics, and respect for privacy.
Providing pragmatic solutions, grounded in proven best practices for Information Governance, Data Privacy, and Data Quality, Castlebridge can empower the people in your organisation to deliver sustainable improvements in the quality of information management.
As a vendor neutral consultancy, we aim to be your trusted information partner.
-
Cato Institute
The Cato Institute is a public policy research organization — a think tank – dedicated to the principles of individual liberty, limited government, free markets and peace. Its scholars and analysts conduct independent, nonpartisan research on a wide range of policy issues.
-
CBIZ Tofias
Our services primarily cater to small to mid-sized U.S.-based corporations and not-for-profits requiring assistance in navigating their applicability and road map to compliance with the GDPR. Specifically, we provide services in data discovery and mapping, security program review and remediation per Articles 25-35 (including incident/breach response), development of policies and procedures to address data subject rights per Articles 12-22, and assistance with navigating cross-border data sharing within organizations. We also aid with the project management aspects requiring legal counsel, such as implementing new mechanisms for appropriate capturing of consent.
-
Center for Democracy & Technology
At the CDT, we believe in the power of the Internet. Whether it's facilitating entrepreneurial endeavors, providing access to new markets and opportunities, or creating a platform for free speech, the Internet empowers, emboldens and equalizes people around the world. As a 501(c)(3) nonprofit organization, we work to preserve the user-controlled nature of the Internet and champion freedom of expression. We support laws, corporate policies, and technology tools that protect the privacy of Internet users, and advocate for stronger legal controls on government surveillance.
-
Center for Digital Democracy
The CDD is recognized as one of the leading consumer protection and privacy organizations in the United States. Since its founding in 2001 (and prior to that through its predecessor organization, the Center for Media Education), CDD has been at the forefront of research, public education, and advocacy protecting consumers in the digital age.
-
CENTRL Inc.
CENTRL is an enterprise privacy management solution, and its Privacy360 is flexible, scalable and adaptable for evolving privacy management requirements worldwide, including compliance requirements for the GDPR, ePrivacy, and the California Consumer Privacy Act. The CENTRL platform scales for large organization enterprise needs and is flexible enough for companies of all sizes to get up and running with minimal configuration and implementation effort. The CENTRL solution has a full suite of modules for GDPR and other needs — spanning assessments, data mapping, data subject access requests and consent management, while including complete third-party and vendor risk management capabilities to complement the enterprise’s privacy management needs.
-
CFC Underwriting Limited
CFC is an insurance company that protects businesses of all sizes with policies that are purpose-built for today’s risk, specializing in cyberinsurance. Cyberinsurance can help protect your business against a range of cyberthreats and exposures, including cybercrime, data breach and system interruption.
-
Chalmin Data Protection and Business Consultancy Ltd.
Chalmin Data Privacy helps businesses to achieve GDPR compliance. Our services are designed to tackle all elements required to establish a full data protection compliance program. Led by founder Gail Chalmin, a commercial and data protection consultant with more than 21 years of legal experience, our services include data audits and drafting client procedures, protocols and policy documentation. We undertake reviews of client processes, such as cross-border data transfers and data processing agreements and deliver staff training. We undertake DPO responsibilities for clients and provide advisory support, keeping clients up to date with key legal developments in data protection law.
-
Charles Russell Speechlys LLP
The Data Protection & Information team at Charles Russell Speechlys provides global contentious and non-contentious advice to both growing and established companies, and is recognised for providing support that goes beyond straight-forward legal services. We provide multi-jurisdictional project management and consultancy services, and train and educate our clients to ensure they comply with global laws and regulations. As a result, many clients recognise us as their trusted advisers in this area.
-
Check Point Software Technologies Ltd.
Check Point Software Technologies Ltd. is a leading provider of cybersecurity solutions to corporate enterprises and governments globally. Its solutions protect customers from fifth-generation cyberattacks with an industry leading catch rate of malware, ransomware and other targeted attacks. Check Point offers a multilevel security architecture with our new Gen V advanced threat prevention that protects all networks, cloud and mobile operations of a business against all known attacks combined with the industry’s most comprehensive and intuitive single point of control management system.
-
Chino.io
Chino.io is an API that enables you to ensure compliance with EU and US data protection laws, and to save time and costs. It offers encryption, access control, daily backups of all data, an audit log, API security and intrusion detection.
With Chino.io you can:
- Build applications with any framework or language.
- Easily integrate with Chino.io via REST API calls.
- Store and manage any health sensitive data and app users on Chino.io.
-
Choate Hall & Stewart LLP
We conduct our highly focused national and international practice from one office in Boston, giving our lawyers the best of both worlds: high-stakes work in a close-knit environment, where partners truly care about associates’ long-term development and work every day to help them improve.
We work seamlessly with the other related areas in the firm, such as tax, finance, intellectual property, health care, employment, benefits, real estate, antitrust and litigation, to support our fund clients in all their investment activities. This integrated team has the experience needed to guide private equity funds and their companies through all stages of a transaction — and their efforts have earned us a reputation for being commercially focused and working effectively with all parties to a transaction.
-
Cipher
Cipher provides an array of assessment and consulting services to help customers gain a holistic view of the state of their compliance towards the Data Protection Act 1998, EU General Data Protection Regulation and other privacy-related regulations that arise. Experienced consultants will assist in establishing the appropriate policies, procedures and systems. Services include awareness workshops, data discovery, health check, impact assessments, managed services and more. The premier offering is 24/7/365 breach monitoring, detection and alerting through Cipher's highly accredited global Security Operations Centers.
-
Clarip
Clarip’s SaaS privacy management platform is trusted by several Fortune 100 organizations, to comply with GDPR, ePrivacy, and other privacy laws. Based on patent-pending Hybrid AI technology, Clarip brings “Data-Risk-Intelligence” to help stop customer data leakage, visualize data flows, and identify gaps in disclosure notices. Clarip’s unified consent and preference management APIs help manage consent for millions across multiple channels including IoT devices. Clarip's “Just-in-Time” privacy notices offer greater transparency, while the Privacy Center for Humans™ allow management of subject rights. From cookie compliance and custom consent forms, to the most comprehensive website scanning, Clarip is the first Artificial Intelligence solution that makes enterprise-wide privacy management affordable!
-
Clark Hill PLC
Clark Hill provides a variety of legal and consulting services in the cybersecurity, data privacy and information security areas, including acting as an external data protection officer. Other services include conducting or assisting with data privacy impact assessments and other risk assessments (such as for HIPAA); privacy policy review and drafting; and creating policies and providing training for GDPR, PIPEDA, HIPAA, GLBA and other privacy laws in the US, EU and elsewhere. We pride ourselves on providing high quality, attentive and personalized service that works with our client's needs and concerns.
-
Cleardox
Cleardox is a redaction software tool that automatically finds and redacts personal information from documents. Cleardox can automatically identify names, adresses, Social Security numbers, and much more and anonymize it to ensure compliance. This is often relevant in situations when documents need to be shared inside or outside an organization. Cleardox automatically black lines the content or replaces it with something else so that the meaning in the document is easily maintained. Finally, Cleardox creates a safe and irreversible version of the document, making it impossible for hackers to unredact it. Moreover, Cleardox comes with a set of features that makes it easy to collaborate with other users.
Cleardox provide privacy data protection services in the following areas:
- Anonymize and keep information rather than deleting information as required in the EU General Data Protection Regulation.
- Anonymize knowledge libraries inside organizations.
- Anonymize data in situations when approval has not been granted.
- Sharing of documents outside organizations (third-party access).
-
ClearHub
Are you searching for an employee with the right level of technical expertise who’s ready to get started right away? If so, ClearHub can help. Offering flexible solutions to help overcome the skills shortage in IT, the team at ClearHub bridges the gap between employer and employee, making it easy to quickly source the best talent. Visit our website to find out more.
-
Clearswift
Clearswift offers a platform designed to help an organization identify, manage, and protect their sensitive information. The platform does this by inspecting a company’s data communication flows, including emails, web, and online collaboration tools, and examining data both in motion and at rest. The platform monitors data based on the company’s own classification rules, allowing it to ensure the organization is in compliance, protected against data leaks, data usage policies are enforced, and it can discover data duplication and manage out of date documents. Clearswift also provides data visualization to help ensure compliance with the GDPR.
-
ClearTalents
ClearTalents' intuitive diversity and inclusion software allows employees to confidentially disclose any reasonable adjustments they need in a structured and safe manner. These adjustments might include subtle changes to the work environment to enhance productivity or reduce stress. ClearTalents' Inclusion Passport, or workplace adjustment passport, identifies areas for workplace modifications to meet individual and collective needs.
-
Clearvision
Clearvision is an Atlassian solutions provider headquartered in Southampton in the U.K. As an Atlassian Platinum Solution Partner, the company can offer everything from technical support and training through to consultancy and cloud hosting, calling on more than 20 years of experience working with the products.
-
Clearwater Compliance LLC
Clearwater Compliance offers software designed to help companies create privacy and breach notification compliance programs. The software helps companies navigate through the 78 requirements of the HIPAA Privacy Rule and 10 requirements for the Breach Notification Interim Final Rule. The software helps organizations identify gaps in their privacy and breach notification programs, stores all compliance documentation in a central, secure location, creates and prioritizes remediation actions, and prepares documentation in case of an OCR audit. It also includes an Executive Dashboard that is updated as gaps are fixed.
-
Cloud Privacy Labs
Cloud Privacy Labs offers solutions for privacy governed data flow, both in the cloud or on-premise. ConsentGrid™ SaaS platform creates an automated privacy hub where organizations can map and control data flows using context-aware policies, regulations and user consent/preferences. It assigns privacy attributes to data, filters or masks data in-flight as it moves between systems and keeps an audit trail to increase transparency. ConsentGrid can implement a vast variety of granular consent and preference scenarios, including children’s consent or consent with multiple parties. It is data agnostic and suitable for organizations in different verticals and regions (GDPR, CCPA).
-
CloudMask
CloudMask is a security SaaS that uses Dynamic Data Masking (DDM) to mask data in real-time as it generated. Running on end-user devices, CloudMask intercepts and changes individual characters to limit access to sensitive data. While masking the data, it makes no changes to the data’s physical structure.
By masking the personal and confidential information, CloudMask DDM acts as a compliance solution for organizations subject to data privacy regulations such as HIPAA (the Health Insurance Portability and Accountability Act), the GDPR (General Data Protection Regulation), and PCI (the Payment Card Industry security standards). Unauthorized users who breach perimeter security can only see the masked data and data privacy is upheld.
-
CMS Legal Services
CMS lawyers offer you business-focused advice tailored to your needs, whether in your local market or across multiple jurisdictions.
As a private equity fund, investor or management team, you face daily pressures of valuations, performance, exit strategies and regulation. The relative availability of debt together with significant levels of capital committed to the private equity industry, or held on corporate balance sheets, has strongly impacted the competition for assets and pricing levels. A cohesive private equity strategy will support you to ensure that you acquire the right assets and obtain maximum value from your portfolio. We are structured around your business sectors and that of your targets. This means we can advise you on all stages of a fund’s lifecycle, from formation and administration to the making of investments, portfolio monitoring and exiting.
-
CNA
With more than a century of experience, we've developed a reputation for offering more than just a policy. Our underwriting and risk control professionals offer tailored industry-specific coverages and provide you with the tools and resources you need to understand your exposures and address potential losses. And if you ever have a data breach, our skilled claim professionals are dedicated to working with you so you may remain focused on your clients.
-
Coalfire
Coalfire is the cybersecurity advisor that helps private and public sector organizations avert threats, close gaps and effectively manage risk. By providing independent and tailored advice, assessments, technical testing and cyber engineering services, we help clients develop scalable programs that improve their security posture, achieve their business objectives and fuel their continued success. Coalfire has been a cybersecurity thought leader for more than 16 years, and has offices throughout the United States and Europe. Specific to the privacy area, we provide HIPAA privacy assessments and GDPR compliance services.
-
Cohen & Gresser LLP
Cohen & Gresser is an international law firm with offices in New York, Seoul, Paris, Washington, D.C., and London, representing clients in complex litigation, investigations and corporate transactions throughout the world. We serve our clients in a number of practice areas, including corporate, employment, intellectual property and technology, litigation and arbitration, privacy and data security, real estate, tax, and white-collar defense and regulation.
-
Collibra
The Collibra data governance platform provides an enterprise-wide solution that automates data governance and management to quickly and securely deliver trusted data to the business users who need it. Collibra does this by delivering a centralized inventory of data across the business and technical landscape, along with governance, accountability, and workflow for personal data ownership, definition, and requirements. Our platform delivers searchable, end-to-end traceability of personal data across - and broad management around – data usage processes. We’re also extending these capabilities with a new GDPR accelerator that helps to further support efforts around this expansive regulation.
-
comforte AG
Every business in every industry has sensitive data throughout the organization. Protecting personal data, health care and insurance records, and payment card numbers are top priorities to help keep a company's brand and reputation intact.
Our software-based solution integrates seamlessly with any enterprise business application, and performs the critical task of applying protection to sensitive data, no matter if the data is on-premise, in the cloud or both.
Data protection utilizing tokenization technology has been our primary focus since 2010, and according to our customers, we do this exceptionally well. When all other data security layers fail, our solution is the last line of defense.
-
Compliance + LLC
Information Privacy Consulting
It is extremely important for any business to understand the Data Life Cycle within their organization. For instance, how data is collected, used, disclosed, stored and destroyed as it proceeds though processing in a business. It is important to be accountable and document the administrative, physical and technical safeguards that protect the data as it is processed.
The Privacy Officer’s job within a business or practice varies. In general, it is the Privacy Officers duty to ensure that the entity complies with privacy and data protection regulations. We offer Privacy Officer on demand services to companies on a contract basis to augment their internal staff.
-
Compliance Compendium Limited
Delivering a cost-effective cloud-based application that aims to help organizations achieve their data protection (66EN) and EU GDPR obligations.
Compliance Compendium is a leading compliance technology company focused on improving compliance for small- and medium-size organizations. Compliance Compendium leverages advanced technologies and consumer insights to deliver integrated solutions. Headquartered in the U.K., the company is a future leader in compliance tools.
-
ComplianceForge
ComplianceForge is a leading provider of cybersecurity and privacy documentation to address statutory, regulatory and contractual obligations for policies, standards, procedures and controls. We have documentation to address ISO 27002, NIST 800-53, NIST Cybersecurity Framework, EU GDPR and other frameworks. Our semi-customized documentation is a fraction of the cost-effective solution for businesses. We offer comprehensive incident response and secure engineering documentation that can help companies maintain evidence that is necessary to comply with EU GDPR for embedding security and privacy principles by design and by default. We also offer consulting services.
-
CompliancePoint
CompliancePoint provides information security and risk management services focused on privacy, data security, compliance and vendor risk management. Our mission is to help clients interact responsibly with their customers and the marketplace. Our services include cybersecurity, GDPR, HIPAA, PCI, SOC, FISMA, cloud compliance, TCPA, TSR, DNC, CAN-SPAM, and CASL. We offer a full suite of services across the entire life cycle of risk management. Our experience with privacy and data security, inside knowledge of regulatory actions and combination of services and technology solutions makes CompliancePoint uniquely qualified to meet your data security and compliance needs.
-
CompliancePoint
Let us help you identify any information security risks or compliance gaps that may be threatening your business or its valued data assets. Businesses in every industry face scrutiny for how they handle sensitive data including customer and prospect information. Our experts have years of expertise and hold the appropriate designations and credentials to perform compliance assessments in a variety of areas. Additionally, if you work with outsourced vendors, our compliance audit helps prevent potential liabilities by ensuring that their activities are aligned with your business's security standards.
-
Comply GDPR Ltd
ComplyGDPR provides compliance support, training and consultancy services, specifically tailored for executive search and recruitment businesses.
GDPR services include:
- Online training for employees.
- Specialist helpline support and training for GDPR leaders.
- Proactive news and updates on regulatory changes, with relevant tips for actions.
- GDPR self-audit checklist or managed audit services.
- Practical GDPR toolkits, resources and documentation templates.
- EU/U.K. representative services.
- Tailored consulting services packages to tackle specific compliance areas. E.g. diversity, data sharing, data retention, marketing matters, etcetera.
We help clients understand the data protection obligations they need to meet and guide them on how to do it in practice. Our approach is designed to support clients wherever they happen to be along their GDPR compliance journey.
All our services are specifically tailored to enable executive search and recruitment businesses comply with GDPR, PECR and DPA 2018.
-
Concord
Concord is a consulting firm driving business value through the use of technology. Our expertise is centered on data. We focus on five core capabilities
Data Experience
We understand user needs to build experiences.Data in Motion
We align complex business problems and the systems that support them.Data at Rest
We keep your data accurate, accessible, and manageable.Data Analytics
We harness the power of data to improve your business.Data Privacy and Protection
We understand the flow of data and can pinpoint the areas of vulnerability.
-
Concord
Concord specializes in data and how it is used and protected. Our data privacy platform helps build trust-based relationships between people and companies that benefit everyone. With our simple, easy-to-implement solution, companies get compliance plus better data and engagement, while people receive privacy-protected controls, better experiences and other incentives for engaging with companies.
One platform for compliance and privacy-first data collection that drives better data, user loyalty, and security and protection.
-
Consentua
Consentua is an app that captures users’ consent to the use of personal data. The app provides regulatory compliance to organizations processing data and allows individuals to control the manner in which their data is used. The app offers a user-friendly dashboard allowing users to see which providers have access to their browsing history, location, health data, and other information. The app ensures companies are compliant with the GDPR by offering query consent in real-time to detect revocations and offers audit trails to demonstrate that the companies are indeed tracking consent.
-
Considerati
Considerati is a full-service enterprise advising on privacy compliance, cybersecurity, and data protection law and strategy. Our main services focus on assessing and advising on the maturity and compliance of a company's privacy governance structure, conducting data protection impact assessments, and tailor-making the necessary privacy and data protection policies, agreements and other documentation to suit the needs and activities of our customers. The Considerati DPO as a service education program is recognized as the best in the Netherlands, attracting customers throughout Europe.
-
Consumer Action
Consumer Action seeks to create an environment in which individuals have the right to be protected by strong privacy laws, control their personal information and make meaningful choices in their interactions with corporations and government.
-
Consumer Federation of America
Consumers have a fundamental right to the privacy and security of their personal information. These rights extend to collection and control of personal data, limits on commercial and government surveillance, prohibition of discriminatory data practices, and safeguards for consumers’ personal information from unauthorized exposure and use. CFA promotes consumers’ privacy rights by advocating for strong laws and regulations, encouraging fair and effective data practices, and supporting vigorous enforcement to curb privacy abuses.
-
Consumer Watchdog
Consumer Watchdog is a nonprofit organization dedicated to providing an effective voice for taxpayers and consumers in an era when special interests dominate public discourse, government and politics. We deploy an in-house team of public interest lawyers, policy experts, strategists, and grassroots activists to expose, confront, and change corporate and political injustice every day, saving Americans billions of dollars and improving countless lives.
-
Consumers Union
Consumers Union is the policy and action division of Consumer Reports. We work with our million plus activists to pass consumer protection laws in states and in Congress. We hammer corporations that do wrong by their customers, and encourage companies that are heading in the right direction.
-
Convesio
At Convesio, we believe that everyone has the right to the privacy and security of their data, and we take these rights very seriously. We have invested a great deal of time, effort and resources into ensuring that only authorized users can use our platform, your information is secure and your data is used only in proper ways. We achieve our goal of providing outstanding security and privacy controls via the following methods:
- Organizational security.
- Data center security.
- Network security.
- DDoS protection.
- Site security.
While we have already implemented state-of-the-art measures to ensure privacy and security, we will continuously update and improve those measures to keep up to date with the constantly evolving threat and regulatory landscapes.
Learn more on our website: https://convesio.com/security.
-
Cooden Tax Consulting
Sussex-based Cooden Tax Consulting specializes in research and development tax credits and R&D tax relief for innovative, green and research-based companies. Established in 2013, we have helped hundreds of companies make successful R&D tax relief claims across technology, creative and manufacturing industries. Call or visit our website for a free initial consultation to see if you are eligible for R&D tax credit.
-
Cookie Information
Cookie Information offer services to ensure GDPR and ePrivacy compliance across websites and mobile apps. We provide an extensive Privacy Management Platform that includes:
- Consent Management Platform with website scanning, and privacy widgets such as Consent pop-up's, Privacy Controls and Cookie Policies
- Compliance Dashboard with an overview of consent rates, data processing to unsafe 3rd countries, data retention and other compliance issues.
- Mobile App Compliance Audit with an assessment of data privacy and security risks of your mobile app.
-
Cookie Information
- Consent management platform to collect valid consent from your users on your website.
- Compliance dashboard to keep track of your compliance and risks.
- Mobile app audit that ensure that your mobile app comply with the GDPR.
-
CookieYes
CookieYes is a consent management platform that helps websites comply with global data privacy regulations, including the EU General Data Protection Regulation, the California Consumer Privacy Act and more. The platform provides tools to manage user consent for cookies and tracking technologies, ensuring that website operators can transparently inform visitors about the use of cookies and obtain their consent in a compliant manner.
CookieYes offers features such as customizable cookie consent banners, automatic scanning and categorization of cookies, and detailed consent logs that track user preferences. It also supports multiple languages and provides geolocation-based consent options to comply with regional regulations. The platform's integration capabilities allow it to be easily added to various website builders, content management systems and custom websites.
In addition to cookie consent management, CookieYes helps organizations maintain compliance with evolving data protection laws by providing regular updates to its features and regulatory guidelines. The platform is designed to reduce the complexity of data privacy compliance, making it easier for organizations to protect user privacy and adhere to legal obligations.
-
Cooley LLP
Cooley's cyber/data/privacy group provides the full spectrum of counseling and litigation capabilities in cybersecurity, data rights and privacy to clients around the globe. We provide companies with a holistic approach to compliance, security and response, built to preserve and protect enterprise value at risk through a growing number of crippling data breaches and vulnerabilities in digital assets, IP, employees, outside vendor access, brand reputation and trade secrets.
-
Council Baradel
Council Baradel is among the region’s premier law firms and serves clients throughout the Baltimore-Washington metropolitan area.
-
CounterTack, Inc.
GoSecure Advanced Mitigation Services augments security teams with more than 400,000 manhours of threat detection and mitigation expertise. Our threat hunting analysts deliver 24X7 Tier 1 and 2 SOC coverage. GoSecure Advanced Mitigation Services are backed with the most aggressive SLAs available today. GoSecure’s Managed Security Services deliver consolidated support for Perimeter and Application Defense, Endpoint Protection, SIEM, and more. Alerts and reports are aggregated into a unified management portal delivering asset-based views, security analytics, and compliance reports. GoSecure Security Analysts monitor alerts, eliminate false positives, and escalate true threats 24x7. GoSecure's Cyber Security Assessment discovers and expands on vulnerabilities found throughout the client environment. It provides a reference against industry-leading practices relevant to organizations of similar scale, within the same industry. CSA identifies gaps in the client’s security posture and delivers a roadmap based on discovered security risks that prioritize the activities needed to improve your overall posture.
-
CoursesOnline
CoursesOnline helps those looking to learn more about cybersecurity and data protection/handling connect with specialist training providers who offer online training courses. These providers include universities and other fully accredited institutions, and the courses on offer are ever updated to help professionals stay up to date with the knowledge they need to know.
-
Cover Compliance LLC
Cover Compliance provides privacy program help to smaller entities that may lack the resources (whether in staffing, time or funding) to purchase sophisticated systems or hire dedicated staff into compliance-only roles. Wherever possible, we work with clients to leverage technology they already own and staff they already have.
We help clients and others understand privacy by design and privacy principles. And we work with clients on policy and procedure writing, compliance monitoring tools, hiring and mentoring compliance staff, working with other client service providers on client data protection issues, and training in privacy and overall compliance program management.
-
Covington & Burling LLP
Covington has an industry-leading data privacy and cybersecurity practice. Described by Chambers and Partners as an “accomplished group of privacy and data security practitioners” that “provides dynamic, practical, real-world advice,” we specialize in helping clients address complex, cutting-edge challenges to managing data privacy and cybersecurity risk. We regularly draw upon our cross-disciplinary expertise to provide efficient and effective counseling and representation. Our work ranges from assisting large, multinational clients in conducting privacy and security audits—to assess the ways in which they collect, handle, and protect their customers’ and employees’ personal information—to providing regulatory compliance advice in connection with specific business practices.
-
CRANIUM
CRANIUM is an international consulting company specialized in privacy, data protection and information security.
For GDPR we focus on:- Awareness offering e-learnings, phishing simulations and classroom trainings.
- Assessment evaluating the as-is phase of your company by performing a GDPR intake or scan.
- Implementation performed based on the results of the assessment.
- To ‘maintain’ compliance we propose our DPAAS solution. Different levels of support are possible from help desk to DPO as a service or even the legal representative.
- Last step is to ‘optimize’ your business processes by performing regular audits or implementing security/privacy by design.
-
Crowell & Moring LLP
Crowell & Moring LLP is an international law firm representing clients in litigation and arbitration, regulatory and transactional matters. Crowell & Moring's Privacy & Cybersecurity Group guides clients through the myriad federal, state and international laws governing the collection, use, transfer and protection of data. We provide practical advice that permits our clients to address privacy and cybersecurity issues in a manner appropriate to their business needs and to the risks that they face.
-
CSR
Helping Businesses Manage the Personal Data of Employees and Customers
The patent-pending CSR Readiness Suite, available only through resellers, affordably offers enterprise-level risk evaluation to help small and medium-sized businesses comply with a host of regulations related to personally identifiable information (PII). Readiness provides comprehensive guidance to review, revamp and revisit processes for handling and reporting loss of PII data of customers, employees and vendors.
-
CSR Privacy Solutions
Helping small and medium-sized businesses manage the personal data of employees and customers, CSR offers our new SaaS online data privacy management platform, uRISQ.
Specifically for SMBs, uRISQ consists of five independent but integrated modules — privacy assessment, threat scanning, breach analysis, data subject access request and vendor management. uRISQ easily responds to the complexities of state, federal and international privacy regulations.
-
cv cryptovision GmbH
We are a world-leading specialist for cryptography and electronic identity solutions. We have been specializing in this field for more than 15 years with hundreds of successful projects delivered.
-
Cyber Investigation Services
CIS offers expert witness and consulting services related to the Internet, forensics, hacking, cyber security, intrusions and data breaches as well as invasion of privacy through other high-tech means.
The Internet, computers, technology, and mobile computing have changed the world so quickly that businesses struggle to keep up with the latest rules, laws, solutions and evidence-gathering methods. Each month, CIS sees hundreds of high-tech cases from individuals and corporations seeking direct technical help or attorneys with the right technical skills. Our team of experts can be a valuable resource to you and your firm in evaluating a case, developing the necessary evidence, or creating reasonable doubt with the evidence held against your client.
Areas Covered:
- Computer, phone, and high-tech forensics.
- Hacking, intrusions, and data breach.
- Intellectual property theft via electronic communications.
- Eavesdropping and privacy interception of communications.
- Internet and investigative intelligence.
- Litigation support.
- Consulting.
- Expert witness.
-
CyberData Pros
CyberData Pros' focus is on data privacy and security consulting. Our job is simple — we help businesses meet their privacy, security and compliance needs so they can focus on growth. We focus on multiple privacy and security solutions including ISO 27001, EU General Data Protection Regulation, California Consumer Privacy Act, privacy impact assessments, security documentation, assessments, audits, training and more. We also offer virtual chief privacy officer and virtual chief information security officer solutions to keep your business compliant.
-
CyberScout
Since 2003, CyberScout has been leading the charge against hackers, thieves and even simple human error. We provide unrivaled solutions that deliver valuable prevention education, proactive protection services and swift and appropriate incident remediation for more than 17.5 million households and more than 770,000 businesses.
Our services are provided through more than 660 client partners that include 16 of the top 20 U.S. property and casualty insurance carriers, six of the top seven Canadian insurers, major credit unions, banks and numerous Fortune 500 companies.
Our longstanding reputation, industry expertise and scalable approach offer businesses and their customers a trusted ally for:
- Identity Management.
- Breach Eductation, Preparation, Response and Remediation.
- Fraud, Credit and Reputation Monitoring.
- Cyber Security and Data Privacy Consulting.
-
CyberSquire
CyberSquire is a Managed Security Service Provider delivering end-to-end cybersecurity as a service. CyberSquire's state-of-the-art Security Operations center is located on the campus of Syracuse University in Syracuse, New York. In addition to our technical solutions, we provide regulatory and compliance advisory services. For those companies needing assistance with the rapidly approaching GDPR deadline, we have a virtual data protection officer service. Our GDPR team is comprised of industry experts and on-staff data privacy lawyers to ensure that our clients have the added resources to achieve and maintain GDPR compliance.
-
Cybot
Cookiebot is a market-leading consent management platform for websites that provides compliance with the EU General Data Protection Regulation, ePrivacy Regulation and California Consumer Privacy Act, provided by the Danish ePrivacy company Cybot.
Cookiebot deep scans your website to uncover and check all cookies and similar trackers so that you and your end-users get full control over what personal information is collected and who it is shared with.
Cookiebot includes:
• Full cookie control: Automatic blocking of all first- and third-party cookies until consent is given.
• Scan report: The scanner detects all types of cookies and similar tracking and provides you with a report including the purpose and provenance of each cookie, the location in the source code, and whereto the data is sent.
• Cookie declaration: Automatically generated from the scan report; shows the user all cookies and enables them to easily change or revoke their consent.
• Consent banner: Highly customizable to properly obtain the necessary consent from your users.
• Consent logging: Each consent is logged and can be presented to authorities or used if required by the individual user.
• CCPA compliance for businesses with the required Do Not Sell My Personal Information link, as well as opt-in banners needed for the consent of minors under age 16.
-
CynergisTek, Inc.
CynergisTek is a top-ranked consulting firm dedicated to helping our clients mature privacy, information security and compliance programs. CTEK’s subject matter experts provide clients tailored professional, managed and consulting services. CTEK Privacy Services support clients in meeting privacy requirements and business needs, including:
- Privacy program assessment — a comprehensive assessment of your Health Insurance Portability and Accountability Act privacy program to verify requirements and improve program initiatives.
- Patient privacy monitoring services — a team dedicated to providing the needed privacy office resources to regularly review information system activity, like user activity within enterprise designated electronic protected health information applications, using preferred analytics tools to evaluate and escalate findings to your team.
- Privacy controls assessment — a comprehensive review of the privacy program infrastructure using NIST 800-53 and evaluating the effectiveness of controls in place to protect data.
- Privacy research assessment — assesses, documents and recommends priorities for any compliance gaps with organizational practices related to using and disclosing of PHI for research activities.
- Virtual privacy officer — provides an experienced privacy officer to assist with establishing, improving and/or managing your privacy program.
- OCR audit readiness — a simulated OCR audit or investigation that assesses specified standards under the HIPAA Privacy, Security, and Breach Notification Rules.
-
Cyphere
Cyphere is a cybersecurity service provider helping organizations secure their most prized assets. Our core expertise includes advising customers around proactive cybersecurity measures in the form of technical deep dive assessments, such as penetration testing and red teaming, data privacy, security compliance and managed security services.
This advice is a true third-party opinion, free from any vendor inclinations or reselling objectives.
Service quality underpins everything we do.
Our security expertise, sector-specific experience and non-salesy approach helps organizations to manage cybersecurity threats effectively.
If you are planning on buying new security products or contracts, be sure to do your homework from the ground up to make informed decisions. We help you validate your plans with independent assessments.
-
Cyren
Cyren is leading a revolution in internet security by utilizing extensive cloud intelligence to provide the fastest protection available. Industry leaders, such as Google, Microsoft, and Check Point, trust Cyren to secure millions of users and billions of daily internet transactions.
-
Cyxtera
Cyxtera Technologies combines a worldwide footprint of best-in-class data centers with a portfolio of modern, cloud- and hybrid-ready security and analytics offerings — providing more than 3,500 enterprises, government agencies and service providers an integrated, secure and resilient infrastructure platform for critical applications and systems.
-
Dados Legais
Dados Legais is an innovative privacy compliance platform. Its software provides automation tools and record-keeping for companies to quickly and safely comply with data subjects rights, provided for in Articles 17 and 18 of the Brazilian Data Protection Regulation.
It has two main interfaces: (i) a centralized communication channel between the data subject and the company; and (ii) a DPO admin, similar to a CRM to manage and control the requests made by data owners. Dados Legais is embedded in the company’s website and allows users to easily make their privacy rights requests, by clicking on a link. Once the click is made, the data subject’s request is submitted to the DPO admin page for the right fulfillment. We provide all the necessary means for software integration into the company’s system.
-
DAMM Solutions
DAMM Solutions have a unique offering via its team of specialists. With a team comprising of a data privacy lawyer, IT privacy and marketing specialist, we offer flexibility to our clients.
-
Daniel Jaye & Associates LLC
Daniel Jaye & Associates provides privacy compliance and virtual CPO services to small and mid-market advertising and marketing technology companies. We have been at the forefront of digital privacy regulations and standards since 1995 both in the United States and Europe. Our focus is on digital advertising privacy compliance including policy development, training, procedures, opt-out compliance, NAI, IAB, and DAA compliance, PIAs, partner and contractual compliance, and industry monitoring. Our clients are assigned a named professional with appropriate IAPP certifications and industry experience on an annual contract on at least a quarter-time basis.
-
Daniel Law
- Implementation of the Brazilian Data Protection Regulation (LGPD).
- Legal assistance on prevention and response to incidents.
- Legal assistance on requests and complaints from data subjects.
- Lawsuits involving privacy and data protection.
- Legal advice involving sector regulations in the field of privacy and data protection (such as health care, financial, e-commerce and digital market).
- Privacy policies, notices, data processing agreements, data protection impact assessment, data transfer agreements, notifications and other legal documents involving privacy and data protection.
- DPO as a service (under Brazilian regulation).
- Digital compliance.
- In-company training sections.
-
Daryus Consulting
Daryus provides specialized consulting services to ensure compliance with Brazil's General Data Protection Law, promoting data privacy and enhancing data protection protocols. With an emphasis on information security management, Daryus safeguards data assets against complex cyberthreats. They develop effective risk management strategies, embedding security into the core business processes. Their cybersecurity services extend beyond compliance, leveraging advanced technology to detect, prevent and respond to potential security breaches. Daryus delivers comprehensive services for LGPD, prioritizing not just adherence to regulations, but a robust, secure data environment that reinforces trust with customers and stakeholders. With Daryus, businesses not only comply with LGPD but also build a resilient data protection framework for a secure future.
-
Data Dynamics
Data Dynamics is a leader in intelligent file management solutions that empower enterprises to seamlessly analyze, move, manage and modernize critical data across hybrid, cloud and object-based storage infrastructures for true business transformation.
-
Data Precise
We offer strategic and operational services aimed at the sustainable safeguarding of information security and privacy management within business operations.
-
Data Privacy Recruitment Ltd
Recruitment solutions for the Data Privacy and Information Governance recruitment market. Data Privacy Recruitment Ltd has leading ability and experience to identify the best talent for both private and public sector organisations in all geographies. We service the UK, Europe and all other international geographies as required.
-
Data Protection People
The DataWise solutions feature a single dashboard that includes templates for data protection compliance, allowing organizations to automate and control many of the tasks to meet the Data Protection Act and General Data Protection Regulation. It includes asset and risk registers, activity reports, training and incident logs and offers task reminders and workflow assignments, document review logs, an agreement repository, and an audit schedule.
-
Data Rep Service
Simple and affordable Europe and United Kingdom representative services to help organizations across the globe comply with Article 27 of the EU General Data Protection Regulation.
-
Data Sentinel
Data Sentinel is a data trust and compliance platform that helps businesses continuously manage their data privacy compliance, governance and quality in real time. Data Sentinel’s proprietary deep learning discovery technology illuminates the true nature of an organization’s data across all sources and systems, monitoring, measuring and remediating the data to ensure compliance with company policies and evolving data management privacy regulations.
-
Data Services Protection Limited
Data Services Protection limited is the foremost licensed Data Protection Compliance Organization in Nigeria. Our core consultants are CIPP-, CIPM- and CIPT-qualified with extensive professional experiences implementing the EU General Data Protection Regulation across both private and public sectors in the U.K. and currently the pioneer consultants shaping the nascent data privacy industry in Nigeria.
We are a one-stop shop for NDPR compliance solutions by providing organizations with the Nigeria Data Protection Regulation and data protection expertise across consultancy, compliance assessment, training and implementation services, as well as offering data protection officers as an outsourced service.
Our high-quality NDPR compliance and DPO digital platform, plus our bespoke digital solutions, bring smart and cost-effective automation to your organization's ongoing management of NDPR compliance.
-
DataGrail
DataGrail is the only purpose-built privacy management platform that ensures sustained compliance with the GDPR, CCPA and more. DataGrail directly integrates with more than 100 business systems, such as Salesforce, Adobe and Oracle, enabling companies to discover and map personal data in seconds — not weeks or even months. DataGrail's direct integrations allow companies to operationalize the privacy request workflow in minutes and unify email preferences across all customer facing applications. Customers include Databricks, Intercom, MuleSoft, G2 and SaaStr. To learn more, please visit datagrail.io, or follow DataGrail on Twitter and LinkedIn.
-
DataGRC Ltd
DPO services and CISO services for data protection and information security support, including assessment, training, remediation and assurance.
-
DataGuard
DataGuard is a privacy and legal-technology company headquartered in Munich, Germany. At DataGuard, we house more than 150 employees who are passionate about privacy, compliance and IT security. Well over 1,000 business customers place their trust in our “Privacy-as-a-Service” solution, a hybrid of client consultation and the provision of our self-developed software-as-a-service platform. In addition to small- and medium-sized enterprises, our customer portfolio also includes major international corporations (industrial, finance and trade), political parties, schools and sports clubs, as well as churches and public institutions.
An interdisciplinary team of certified data protection officers, including lawyers, computer scientists, engineers and business economists, provide personal support to both our German and international clients on the subject of privacy and IT security. The process of consulting our clients is supported by the use of our web platform that digitizes and automates manual activities and processes data with machine learning.
-
DataGuidance
DataGuidance offers a platform designed to help privacy professionals monitor regulatory developments, mitigate risk, and achieve compliance. The company's platform is supported by over 400 privacy professionals, who have helped developed many of DataGuidance's features, such as a database containing over 14,000 documents, guidance notes, and an "ask an analyst" feature where concerned individuals can get in contact with one of the privacy professionals to address questions across numerous industries.The platform also has a global privacy directory companies can use to assess data protection regimes around the world.
-
Dataguise
Dataguise’s platform helps an organization discover, audit, and monitor sensitive data in real time. The platform monitors all of the data whether it is within the enterprise or on in the cloud. Dataguise offers templates for companies to use to create their own policies, and allows them to build their own data elements. The dashboards on the platform allow an organization to determine who is accessing data and when, and sends alerts whenever sensitive data is discovered. The platform offers an automated method to encrypt all information within all data repositories and helps ensure companies are compliant with privacy and regulatory mandates.
-
DATAINFO.SI
DATAINFO.SI offers comprehensive services focusing on privacy and data protection. Their services include the provision of data protection officers for organizations, ensuring compliance with the EU General Data Protection Regulation and other relevant data protection laws. They also handle the implementation of the necessary adjustments for compliance with the NIS2 directive, which enhances network and information system security across the EU.
Additionally, DATAINFO.SI provides specialized services such as GDPR compliance checks, preparation of legal and organizational measures to demonstrate compliance, and assistance during inspections. They offer tailored advice to manage and report personal data breaches effectively. Their portfolio includes continuous employee training and awareness sessions to strengthen organizational data protection practices. These services are vital for organizations to maintain high levels of data security and integrity, complying with the evolving landscape of privacy regulations.
-
dataprotection.ae
We are privacy advocates at heart and technology specialists by trade. Our goal is to find the most efficient strategies that will assist companies in maintaining their competitive edge while securing their operations and reduce their exposure and liabilities in this competitive market. We are a multidisciplinary and business-oriented team with entrepreneurial thinking, willing to analyze, build and brainstorm optimal solutions for your data protection compliance.
-
DataRep
DataRep is a leading provider of representative services, both under Article 27 of the EU General Data Protection Regulation through our unique network of 29 contact locations (one in each EU member state, plus Norway and Iceland in the EEA), and also under post-Brexit U.K. GDPR through our U.K. contact location.
We focus on the following to ensure we’re delivering the best and most-compliant representative service available:
- Providing data subjects with as many options to raise their queries as possible, using email address and website landing pages — which can be client-branded — in addition to the physical contact locations.
- Affordable pricing starting at 150 euros per year, based on relevant factors, ensuring a fair price related to the data being processed.
- Simple appointment process — complete our one-page questionnaire and we’re ready to go!
- Making all EU contact locations available to all EU representative clients, so they can meet the European Data Protection Board guidelines expecting the representative to be located in the EU member state where the client has the most data subjects, and that data subjects in other EU member states will have easy access to the representative. (EDPB Guidelines 03/2018)
- A very high level of responsiveness (our service level ensures all communications are received no later than the following working day).
- Basic AI translation from the 24 official EU languages included on communications received, and full legal translation available on request.
- Renewal discounts based on communications received — the majority of our clients see a 50% discount from their first renewal.
Please feel free to contact us at contact@datarep.com to discuss your needs and obtain a quote.
-
Datastreams.io
If you are a data controller, or processor and your data processing activities relate to the offering of goods or services (paid, or free) to, or monitoring the behaviour (within the EU) of, EU data subjects, then you need to find a solution which meets the requirements within the GDPR.
Are you able to meet these key requirements of the GDPR?
- Easy access to an individual’s personal data.
- Transparency on how this data is processed.
- Allow the possibility to object to it and to gain explicit consent.
- Data portability – The ‘Right To Be Forgotten’.
Our new approach to data management centres around our Data Stream Manager (DSM) solution which has by default incorporated these key requirements, from inception to design and implementation, as part of our privacy by design company principles. The DSM can quickly help your organisation meet the needs of the GDPR and allow you to leverage your omnichannel data in a privacy compliant way.
-
Davis & Gilbert LLP
Davis & Gilbert is a full-service law firm with a specialization in the marketing and communications industry. Our privacy and data security practice group provides services regarding behavioral advertising, CCPA compliance, incident response, information security policies, market research, complex data analytics, internal data security, labor/employment, HIPAA and consumer-facing privacy disclosures.
We advise advertising agencies, DSPs/SSPs, publishers, brands, trade associations and any entity that deals with the collection and exploitation of consumer data.
-
Davis Wright Tremaine LLP
Today’s economy is driven by information. From automated manufacturing to online commerce to workforce management, consumer privacy and information security must be managed in every aspect of an organization’s operations. Davis Wright Tremaine has been a pioneer in this dynamic area of law, serving highly regulated industries, such as communications, health care and financial services providers for decades. As privacy and information security requirements evolve and extend beyond these historically regulated industries, our attorneys help our clients navigate this new territory and understand ongoing developments at the state, federal and global levels. One of the strengths of DWT’s Privacy and Information Security practice is our ability to address the wide range of legal questions that our clients have on a daily basis while providing practical guidance on the implementation of comprehensive privacy and information security programs that fit their workplaces, industries and technological needs. Should a problem arise, our Incident Response team is here to guide our clients through the initial assessment, the appropriate response and any subsequent investigations, enforcement actions and litigation. Our core Privacy and Security team is supported by robust industry experience within DWT’s practices in communications, health care, litigation, media, payment systems and technology.
-
De Brauw Blackstone Westbroek N.V.
De Brauw helps clients with their data privacy, data management and data security needs. We do not lose ourselves in notorious legal complexity of comprehensive privacy law but strive to provide strategic advice that aligns corporate goals with legal compliance. Our response to enforcement is swift and effective. Our relationships with international authorities are excellent.
-
Dechert LLP
Dechert’s data privacy and cybersecurity group takes a holistic and practical approach to the legal issues that arise from data optimization and data collection. Our lawyers are adept at designing and implementing global privacy and cybersecurity programs that enable companies to lawfully collect, analyze, secure and transfer data across borders.
-
Deeth Williams Wall LLP
Privacy is a critical part of the information age. We’ll advise you on your privacy rights and obligations under the myriad provincial, federal and international privacy and personal information protection laws. We’ll also help you develop cost-effective privacy policies, act in your privacy-related disputes, and address your privacy issues as they intersect with other areas of law.
-
Déjà vu Security
Déjà vu Security has been a trusted provider of information security research and consulting services to some of the world’s largest and most-esteemed technology companies. Our expertise is in information security services where we provide our clients strategic insight, proactive advice, tactical assessment and outsourced development. For each client, we offer a full range of security services.
-
Dell EMC
Bridge the gap between technology and transformation. From the edge to the core to the cloud, our consultants will partner with you to plan, advise, and execute your Digital, IT, and Workforce transformations.
IT Transformation Services
Create a cost-optimized, business-focused IT service development and delivery organization with a new operating model, an automated, resilient infrastructure platform, and a rationalized app portfolio.Digital Transformation Services
Use cloud-native apps, modern software development techniques, and analytics to build new products and services that increase revenue, enhance customer value, or create new monetization opportunities.Workforce Transformation Services
Increase workforce productivity and satisfaction with personalized experiences, anytime/anywhere access to apps and data, and simplified, self-service consumption of IT services.
-
Deloitte Statsautoriseret Revisionspartnerselskab
Deloitte offers DPO as a service: A service by which legal, privacy and cyber experts advise on and monitor the compliance level of your organization and increases the level of IT security. In our view, the DPO role consists of more than legal issues, which is why we have integrated the technical aspects into the role.
Services provided are:
• Advise on privacy legislation/guidelines.
• Facilitate awareness.
• Conduct simulations of privacy leakage and handle breaches.
• Advise on DPIAs.
• Perform risk assessments.
• Assist organizations in becoming resistant to hacker/malware attacks.
• Offer SIEM-solution.
• Update policies.
• Conduct crisis management.
• Simulate inspections from authorities.
• Offer the “DPO-Lifecycle-Program” educating and providing tools to current DPOs.
-
Demand Progress
Demand Progress is 501(c)4 entity, with 501(c)3 sponsorship from the Citizen Engagement Lab Education Fund. Demand Progress is a national grassroots group with more than two million affiliated activists who fight for basic rights and freedoms needed for a modern democracy.
-
Dentons US LLP
Our privacy and cybersecurity lawyers operate at the intersection of technology and law. We understand that data is one of your core assets, driving insights and enabling the development of valuable new products and services.
However, the collection, use and storage of personal information is subject to an increasingly complex framework of laws and regulations in the U.S., EU, Canada, Asia and around the world. Monetary penalties for violating these laws are severe and reputational damage can be irreparable.
Leverage our knowledge of these requirements to design real-world strategies to unlock the power of your data while building trust in your brands. We work with you to enhance disclosures, strengthen compliance and implement integrated risk management programs that create a strong control environment as a springboard for innovation.
In addition to proactive counseling, we contribute our strategic insight when you need to respond to crises. For example, we work side by side with clients to manage data breaches by directing forensic analysis, remediating vulnerabilities, understanding legal requirements and coordinating communications with people whose information was compromised.
Our global privacy and cybersecurity group works across all sectors offering a full complement of counseling and advice, regulatory and litigation services.
-
Design Laboratory
Project Management
We manage complex projects designing and implementing processes and tools across multiple groups. Design Laboratory strategy and process experts bridge the gap between an organizations vision and the pragmatic reality of creating a product of service.Learning & Readiness
Online learning and training Podcasting and webcasting, modular curriculum design for consumption on the fly - these are the solutions today's leading companies reach for to keep employees connected and effective. Design Laboratory assists with cost-effective systems and services.
-
Dessislava Fessenko, antitrust and technology lawyer
Attorney focusing on data protection, data governance and artificial intelligence regulations, and certified information privacy professional with the IAPP. Extensive research and deep understanding of law, policy and ethics of data, AI and algorithms, in particular in the EU and in health care. I work with, and provide strategic and operational advice to, innovative outfits and large multinationals on the implementation of and compliance with the EU General Data Protection Regulation, the EU AI Act, the Data Governance Act, the Data Act, and cybersecurity legislation concerning AI and data, in the life sciences, tech, digital, financial services, media and mobility sectors. I help operationalize AI and data governance and compliance with the EU data protection and digital technology regulations by designing, developing and introducing respective internal policies, procedures, protocols and controls, conducting data protection impact assessments and risk assessments of AI-assisted and data-driven technologies prior to their introduction, drafting and negotiating data processing agreements and technology transfer agreements, etc., at the respective clients.
-
DeUmbra
DeUmbra began with a simple principle: create cutting-edge technology solutions to secure the world by leveraging smart algorithms to find patterns in suspicious behavior among massive volumes of data. DeUmbra brings more than 15 years of research and development in network/graph analytics, machine learning, anomaly detection, natural language processing, social media analysis, and behavior analysis of structured data (e.g., SIGINT, transactional data). We have developed mature capabilities to identify entities (e.g., human individuals, networks, ships, usernames) of interest, track changes of the entities over time, identify likely adversarial entities/behaviors and anticipate their future activities, and identify entities of interest (e.g,. those vulnerable or prone to radicalization, recruiters, adversaries, etcetera).
-
DF Labs
DFLabs is proud to be the only European-based SOAR vendor, headquartered in Milan, Italy, with global operations throughout North America, Europe and Asia-Pacific.
Cyber-incident response means the process of exchanging necessary information on a cybersecurity incident with individuals or organizations responsible for conducting or coordinating remediation to address the cybersecurity incident.
Our IncMan SOAR platform incorporates incident response and threat intelligence capabilities in one single platform, enabling SOCs, CSIRTs and MSSPs to manage, measure and orchestrate complex security operations tasks and incident response processes, including security incident qualification, triage and escalation, threat hunting and investigation, and threat containment and mitigation.
Our SOAR solution transforms security operations by maximizing the incident response capabilities of the understaffed security teams, reducing the time from breach discovery to resolution from hours to seconds, with zero security alerts left behind.
-
Didomi
Didomi offers an end-toend privacy management platform helping businesses of all sizes comply with privacy requirements and build consumer trust. Our cloud-based suite of tools includes automated websites/apps scanning and auditing, privacy compliance assessment, privacy and cookie policy generation, and consent management. Our flagship product is the ‘Privacy Center’, a consumer-facing app that replaces your privacy policy with a dynamic and customized app where consumers can easily access their information and manage their data preferences and exercise their GDPR rights.
-
Dig Security Solutions
Dig Security offers a proven, end-to-end data security solution that ensures your data stays secure, your organization remains compliant and you can govern your data.
Dig introduces the industry’s first data detection and response solution, providing real-time visibility, control and protection of your data assets across any public cloud.
-
Digital Due Process
To simplify, clarify, and unify the ECPA standards, providing stronger privacy protections for communications and associated data in response to changes in technology and new services and usage patterns, while preserving the legal tools necessary for government agencies to enforce the laws, respond to emergency circumstances and protect the public.
-
Digital Guardian
Digital Guardian’s threat aware data protection platform safeguards your sensitive data from insider and outsider threats. By harnessing our deep data visibility, real-time analytics and flexible controls, you can stop malicious data theft and inadvertent data loss.
-
Dinsmore & Shohl LLP
Dinsmore is a national law firm where accomplishment is the center of everything we do. Our attorneys handle cybersecurity, privacy and data usage matters of all kinds, even in the most demanding regulated industries. We are guided by our clients’ unique goals, and we work closely with each client — from local businesses to major national and multinational entities — to craft practical and effective legal strategies.
-
Direct Line To Compliance
ColorCodeIT is cloud-based software that calculates real-time updates on an organization’s regulatory compliance status, mapped to the exact language elements of the compliance standards themselves. AI and Natural Language Processing assist the standards parsing process, generating color-coded templates with core language metrics. During configuration, binary mapping to the organization’s digital evidence is completed. Updated files are imported from web containers to sustain compliance on an ongoing basis. Audit work papers are auto-populated from the database. Integrated risk is monitored on a calculative basis via live dashboard reporting, performing months of work by multiple resources in a fraction of a second.
-
DLA Piper
With data protection lawyers around the globe, DLA Piper provides highly sophisticated data management, data security and privacy law advice wherever our clients do business. Our global presence, combined with our depth of experience in each region, gives clients the important advantage of local knowledge and cultural awareness, along with consistent, practical advice.
Our team members are very involved in their local compliance culture and maintain close contacts with local regulators in Asia-Pacific, Europe and the U.S. The group has played a major role at the forefront of the development of privacy, data security breach and data security laws around the world. Our data protection team has successfully worked together in recent years to assist more than 100 multinational organizations in the design and implementation of global privacy and security programs, including carrying out audit and risk assessments, developing global policies, implementing effective international data transfer strategies, negotiating cloud and other complex international data transfer agreements, and defending dozens of regulator and plaintiff’s class action bar enforcement actions.
-
DLP Assured
DLP Assured’s GRC System is a self-reporting platform designed to report on governance by including a visual dashboard that features real-time displays of pertinent information from relevant staff to help improve decision-making. The asset register records all of an enterprise’s assets that can then be assessed for risk. This could include databases with personal information.
-
DocEx
DocEx allows protection and access-control for sensitive documents in-transit, internally or externally. Companies can maintain full custody, control and track forwards, views, prints, downloads, and all other actions. You can manage consents, authentications, watermarks, bates numbering, and geo-location rules. You can also manage service levels, revoke access manually or automatically, and download full reports for proof-of-compliance. Live policy enforcements, alerts, and dashboards make you proactive to threats and give you insights into the usage of your content. Additionally using custom policy templates, you can comply with GDPR, GLBA, Privacy Shield, Communications Act, and other regulations.
-
Dorsey & Whitney LLP
Dorsey’s lawyers and staff can help you gain that edge by applying superb legal knowledge and skills with practical wisdom and a deep understanding of your business and industry.
In a world dependent on information technology, networked operations and mobile connections, businesses face an increasing array of cybersecurity and data privacy challenges. Dorsey offers a coordinated worldwide team that helps assess your data flows and guide compliance efforts. When a security incident occurs, Dorsey’s team can respond immediately with a complete range of services to help you meet this challenge. Increasingly, privacy compliance is table stakes in vendor relationships and mergers and acquisitions. Dorsey helps its clients negotiate contracts, draft privacy and security policies, and consider privacy challenges raised by cutting-edge technologies.
-
DPO Consulting
Audits: We map your processing through our audits, and offer recommendations to help you achieve a high level of compliance with a detailed program. Training Programs: We offer qualifying training programs in data protection for your operational staff, your DPO, and your managers. Outsourcing: It consists of outsourcing the role of DPO. We carry out all the tasks of the DPO for you, including mapping, training, maintaining records and validating projects with the help of our tool myDPO (mydposolution.com).
-
DPO Network Europe
DPO Network Europe is a specialized recruitment firm focused exclusively on European data protection and privacy roles. With ever-increasing demand, we are privileged to work for a broad range of industries, from large multinationals to medium-sized organizations all of which strive for successful privacy compliance programs. Thanks to our domain expertise and growing network of high-calibre candidates spanning 30+ countries, we have become the trusted recruitment partner to the world's top brands for their in-house and contract privacy job vacancies based in Europe. The foundation of our success lies with our people who are privacy-savvy and who deliver. Let's introduce you to top privacy talent for your business. Connect with us!
-
DPOrganizer
DPOrganizer offers a platform to help companies map, visualize, report, and manage their processing of personal data. The platform asks questions such as the purpose and legal basis of data processing, data processors and their instructions, data controllers and their responsibilities, storage, accessibility and retention time of personal data. It also allows companies to upload documentation such as privacy policies, processing agreements and privacy impact assessments to the software. DPOrganizer creates reports for organizations to use to find out where data is stored, and how it is used both internally and externally. The platform alerts users to any changes that have been made, and notifications are sent if any information needs to be updated.
-
DQM GRC
DQM GRC offers GDPR and data governance services to corporations across the UK.
Their services include third party GDPR assessments, consent and preference management solutions, data watermarking, commercial seeding, and training in all aspects of data handling to ensure staff are in full compliance with relevant legislation.
-
Draftit Privacy
Our scalable solutions will improve and streamline your privacy procedures, and help you comply with many of your obligations under the GDPR. All of our products are based on Draftit Privacy Best Practice, a standard model that we developed in collaboration with leading data protection and privacy experts.
Privacy Records is a scalable solution for mapping and monitoring your records of processing activities.
Privacy Evaluation helps you to map and evaluate your GDPR compliance situation, and provides customised recommendations and guidance.
Privacy e-Learning ensures that you and your colleagues are fully trained in data privacy and GDPR compliance.
-
Drinker Biddle and Reath LLP
Drinker Biddle is a national, full-service law firm providing litigation, regulatory and business solutions to public and private corporations.
Our lawyers combine a comprehensive range of legal services with significant national roles in industries, including — but not limited to — education, financial services, health care, insurance, pharma and life sciences, and retail. Through deep industry knowledge and a commitment to excellence, clients can rely on us to deliver the counsel and insight needed to win complex class actions, close billion-dollar transactions, and stay ahead of ever-changing regulations.
-
DSS Consulting Ltd.
GDPRoofed supports the principle of accountability complying with the GDPR regulation’s other key principles and enabling the organization to manage all GDPR-related information and activities at a single place, in a single system. Connecting GDPRoofed to IT systems storing personal data, companies can maintain an up-to-date central filing system for all personal data. GDPRoofed provides automation tools for data mapping, managing data transmission by data processor, incident management, data privacy impact assessment and designing company dataflows. The solution includes dashboards, reports, and automated email notifications that allow organizations to regularly monitor GDPR compliance.
-
Duane Morris LLP
Duane Morris, a law firm with more than 800 attorneys in offices across the United States and internationally, is asked by a broad array of clients to provide innovative solutions to today's legal and business challenges.
With extensive experience in the transactional, regulatory and business climate for private equity, our lawyers are well positioned to help formulate strategies, deal structures and terms designed to ensure optimal solutions. The reason: Our lawyers think and manage like owners and investors and understand that each potential investment is a unique decision with important implications for the business.
-
Dury Compliance & Consulting
As a consulting company of the Dury Group, Dury Compliance & Consulting specializes in data protection consulting as well as information security consulting for private and public authorities.
-
DXC Technology
At DXC, our commitment to privacy goes beyond the minimum legal and regulatory requirements. We strive for best-in-class data protection and privacy management, which requires a sound data privacy governance structure, effective data privacy compliance, and best practices program to ensure DXC meets ever-changing and increasingly complex regulatory standards and all contractually agreed upon privacy obligations.
DXC's Global Privacy Office has strategic and operational responsibility for this program, which is adequately resourced and appropriately organized to ensure the policies and compliance processes, technology and physical controls and security we rely upon to govern the collection, use, storage and transfer of personal data all over the world meet statutory and regulatory requirements. Therefore, DXC's approach is to coordinate the contribution of several corporate disciplines — including ethics and compliance, legal, human resources, and information and physical security — to achieve our "best in class" data protection and privacy management objectives.
-
DXC Technology
Our Consulting Services help accelerate your journey to a digital enterprise. Through our Digital Transformation practices and partnerships, we bring world-class talent with a breadth of expertise and unique IP to confidently guide you from strategy to implementation.
-
ECOMPLY.io
ECOMPLY empowers Data Protection Officers with a better way to do their work. The Data Protection Management System (available cloud-based or on-premise) builds on the experience of data management in over 1800 organizations, supporting best-practice approaches for records of processing activities, data protection impact assessment, vendor management, data processing agreements, data mapping, logbook for accountability as well as incident tracking and data subject requests. On top of that an entire suite of tools support maintaining multiple controllers via supervision.
-
Efilli
Efilli is a consent management platform for websites that allows the collection of cookies in accordance with privacy and data protection regulations without inducing the preferred user interface.
-
Egnyte
Egnyte has released a platform supporting compliance with the General Data Protection Regulation in all 28 European Union member states. The platform allows an organization to identify all the personally identifiable information it holds, whether it’s in the cloud, or on site. The platform makes sure all software, tools, serves, and apps are updated and complaint with the GDPR. Egnyte’s platform allows organizations to categorize all forms of PII in case any data subject makes a right-to-be-forgotten request, and offers the ability to notify administrators if any files are accessed inappropriately. The platform allows supports the use of multiple domains for companies located in countries with strict data residency requirements.
-
eID Consult
eID Consult offers independent consultancy in electronic identification, eID, focusing on business exploitation of technology. eID Consult has special expertise in the areas:
- General X.509v3 based PKI.
- NemID.
- Privacy and Privacy Policy.
- EU regulation of eID trust services.
- Lectures on PKI, eID and Privacy.
You may benefit from eID Consult early in a project phase where we can contribute ideas, knowledge and insight. This allows you to minimize the risk of expensive reversals and delays.
-
Electronic Frontier Foundation
EFF is the leading nonprofit organization defending civil liberties in the digital world. Founded in 1990, EFF champions user privacy, free expression, and innovation through impact litigation, policy analysis, grassroots activism, and technology development. We work to ensure that rights and freedoms are enhanced and protected as our use of technology grows.
-
Electronic Privacy Information Center
EPIC is a public interest research center in Washington, DC. EPIC was established in 1994 to focus public attention on emerging privacy and civil liberties issues and to protect privacy, freedom of expression, and democratic values in the information age. EPIC pursues a wide range of program activities including policy research, public education, conferences, litigation, publications, and advocacy. EPIC routinely files amicus briefs in federal courts, pursues open government cases, defends consumer privacy, organizes conferences for NGOs, and speaks before Congress and judicial organizations about emerging privacy and civil liberties issues. EPIC works closely with a distinguished advisory board, with expertise in law, technology and public policy. EPIC maintains one of the most popular privacy web sites in the world - epic.org.
-
Elsby & Co
Elsby & Co, an accountant in Northampton, England, provides dedicated financial guidance for businesses and individuals. Our expert accountants are ready to assist with tax returns, accounts, audits, payroll and bookkeeping needs. We also support small and medium-sized businesses and startups with business plans, cash flow projections, budgets and more. Visit our website to book a consultation with an expert.
-
Elvinger Hoss Prussen
Elvinger Hoss Prussen was founded in 1964 by lawyers committed to excellence and creativity in legal practice. Independent in structure and spirit, our firm guides clients on their most critical Luxembourg legal matters.
We have a dedicated team of lawyers specializing in information technology, intellectual property, media, data protection, communications and internet, financial technology and regulation technology.
In these areas of expertise, our legal services range from providing legal advice and regulatory guidance, assessing risks, determining strategies, negotiating and drafting contracts to providing assistance to and representing clients in relation to pre-litigation and litigation matters and amicable settlement of disputes.
We also provide and assist our colleagues on corporate, mergers and acquisitions and private equity transactions and in matters related to finance and investment funds each time those matters require our specialized input in respect of our specific areas of expertise.
We speak at conferences in Luxembourg and abroad, participate in working groups, and write papers about our experience in the relevant mentioned practice areas. We are members of professional associations related to our various practice areas.
-
EMC Insurance
EMC Insurance Companies is in the top 50 property/casualty organizations in the United States and is one of the largest in Iowa, based on net written premium.
-
EmergIn Risk
EmergIn Risk has identified many of these exposures and will work with clients to develop cyber solutions intended to minimize investment and performance risk. Our solutions incorporate a blend of risk transfer and vendor services that engage with our clients’ strategic plans to minimize their exposure to drops in performance due to system or data corruption, the inability to access systems, as well as the potential for data breaches.
-
EMX Tecnologia
GestãoX-LGPD is a complete framework developed by data protection officers using SGPD methodology. The solution includes from the step-by-step adequacy project, audits for diagnosis of General Data Protection Law requirements and compliance with ISO27001 and ISO27701 and CIS-V8 in addition to all deliverables required by the LGPD (holder portal, consent management, Ibero-American Data Protection Network, incidents, notifications, training, mandatory documentation, contracts, dashboards, key performance indicators and many others).
O GestãoX-LGPD é uma framework completa desenvolvida por DPO's utilizando metodologia SGPD, a solução contempla desde o projeto de adequação passo a passo, auditorias para diagnóstico de requisitos LGPD e conformidade ISO27001 e ISO27701 além de todos os entregáveis exigidos pela LGPD automatizados (Portal do Titular, Gestão do Consentimento, RIPD, Incidentes, Notificações, Treinamentos, Documentações Obrigatórias, Contratos, Dashboards, KPIs entre outros).
-
Enara Law PLLC
Enara Law is a full-service law firm that specializes in business law in Phoenix, Arizona. We are here to help you with all your business legal matters, including mergers and acquisitions, business formation, contracts, business litigation and more. At Enara Law, we’re looking to change people’s negative opinions of lawyers. That’s why we’ve changed the traditional law firm model. We’ve done away with high fees and billable hours, and replaced them with transparency, affordability and efficiency for our clients. We are a team of aggressive advocates with decades of experience defending individuals and businesses when they are at their most vulnerable.
-
Ensighten
Ensighten offers a patented website data privacy solution designed to help organizations quickly and easily comply with data privacy regulations, assess privacy risk, and block any unauthorized tag from firing, including piggybacked tags. By adding a single line of code to your web page, Ensighten blocks data from leaving on the first page visit, making you GDPR-compliant. Ensighten also provides an integrated notification and consent experience, supporting any language – all configurable from a user-friendly UI. The platform offers dashboards, metrics, and reports for audit purposes and for companies to stay informed about the tags on their websites.
-
Enterprise Knowledge Partners
EKP is a management consulting services firm focused on information technology, security, compliance and electronic discovery. We have industry-specific expertise in public and private sector industries, including health care, legal, financial services, manufacturing and energy. We strive to reduce costs while delivering measurable, sustainable results via a holistic, unified approach to overall technology, security, compliance and legal defensibility.
-
Enterprise Risk Management
ERM's services include Cybersecurity strategy, assessments, remediation, implementation, digital forensics, products and cybersecurity culture and awareness training. ERM has served over 300 clients in over 20 industries. Clients range from private and publicly held multinational companies to small businesses. Sample industries include banking, financial services, education, government, healthcare, retail, and technology. Our mission is to protect individuals, organizations and society through comprehensive information security.
-
Enterprivacy Consulting Group
Unlike many privacy consultants who focus primarily on legal and regulatory compliance, Enterprivacy Consulting Group focuses on building your company’s brand through engineering trusted relationships with your customers. Developed by Jason Cronk, the author of the book Strategic Privacy by Design, our approach, using best in class ideas from the privacy community, reduces non-regulatory privacy risks that could put your company in the spotlight. Driving customer loyalty, trust, and demand for your offerings is what Enterprivacy Consulting Group is all about.
Services available:Training
Privacy by Design starts with training. Whether it’s seasoned privacy professionals, product managers or engineering staff, each can learn from our focused process driven training. We will teach attendees to recognizes privacy invasions, use tactics to mitigate those invasions and how to appropriately select tactics to reduce risk. The process will result in comprehensive documentation that not only any regulator would be happy to see but will result in more secure and thoughtful products your customers will trust.
Design Assistance
Identifying privacy issues themselves can be one of the toughest jobs. Privacy can be extremely nuanced and often hinges on identifying at-risk populations among large customer bases. Analysts must also consider cognitive biases, information asymmetries, and ethical boundaries in order to conduct a proper assessment. Not only can ECG help you identify these hidden risks, we will also suggest mitigating controls, be they simple business model changes or more sophisticated technologies.
Program Development
Products and services are never static. Static offerings will quickly kill your business, and as your business expands so too does the need to address any and all privacy issues. ECG can help you build a world class Privacy by Design Program, so that you can repeatedly address new privacy issues as your product changes.
-
EPI-USE Labs
EPI-USE Labs has spent over thirty years in the SAP data space creating and developing advanced software solutions with proven track records. We’ve put our experience to work to develop the SAP GDPR Compliance Suite, to help you ready yourself for GDPR compliance — both reactively and proactively.
-
Equifax
Equifax is a global data, analytics and technology company. We believe knowledge drives progress. We blend unique data, analytics and technology with a passion for serving customers globally to create insights that power decisions to move people forward.
-
Erie Insurance Group
Erie Insurance Group is a multi-line insurance company, offering auto, home, business and life insurance through our network of independent insurance agents.
With identity recovery coverage, you don’t have to go it alone. Erie Insurance’s coverage is available for a low annual fee and designed to help you restore your credit in the event of identity theft or fraud. You’ll also get help from your own dedicated case manager who’ll walk you through the process step by step.
-
Ernst & Young
As many organizations have learned, sometimes the hard way, cyber attacks are no longer a matter of if, but when.
For EY Advisory a better working world means solving big, complex industry issues and capitalizing on opportunities to help deliver outcomes that grow, optimize and protect our clients' businesses.
Our global mindset and collaborative culture across our diverse team of consultants and industry professionals inspire us to ask better questions about the cybersecurity challenges you face. We then team with you to co-create more innovative answers – to activate a foundation that protects the business as it is today, adapt that foundation as the organization and threats change, and anticipate attacks that may be coming.
-
eSentire, Inc.
eSentire® is the largest pure-play managed detection and response service provider, keeping organizations safe from constantly evolving cyberattacks that technology alone cannot prevent. Its 24/7 security operations center, staffed by elite security analysts, hunts, investigates and responds in real time to known and unknown threats before they become business disrupting events.
-
ESET
Since 1987, ESET has been developing award-winning security software that now helps more than 100 million customers to Enjoy Safer Technology. Its broad security product portfolio covers all popular platforms and provides businesses and consumers around the world with the perfect balance of performance and protection. The company has a global sales network covering 180 countries, and regional offices in Bratislava, San Diego, Singapore and Buenos Aires.
-
Esfera Legal Abogados
The Prior Lawyers team is composed of a group of professionals with experience in all areas of law. With Prior Lawyers, clients obtain the best personalized attention, with total confidence and the most complete legal advice, all thanks to the great experience of our firm.
-
eSpyder Ltd.
eSpyder is a eDiscovery solution that has been developed from the ground up to support the EU General Data Protection Regulation. It is uniquely aimed at the data protection officer and their requirements of their role. eSpyder offers 360-degree visibility on where data is held and effectively supports management of access requests with no IT resourcing requirement once installed. Priced competitively to suit medium and large organisation alike, while offering flexible deployment options and a small IT footprint to fit a company’s IT preferences.
-
Essextec
Our certified, experienced experts collaborate with you to ensure that you fully understand your risk posture. We then apply a holistic, integrated approach to architect and implement a plan to mitigate those risks, meet compliance mandates, and minimize your exposure. We can assist your organization to increase awareness of the vast regulatory environment revolving around due care and due diligence. With proprietary tools and an inclusive approach, we are able to identify core risks and design and implement systems and protocols that ensure the highest standards of governance and compliance to meet today’s strict regulatory requirements.
-
EU Business Partners
We provide simple and hassle-free representation in the EU for non-EU businesses for the purposes of Article 27 of the GDPR. We are data protection and GDPR experts that understand the needs of businesses.
-
EU Rep
EU Rep provides GDPR Article 27 representation service for organizations that are obliged to appoint a GDPR representative in the European Union. With Ireland set to be the only English-speaking member of the EU after Brexit, for a small monthly fee, EU Rep acts as the organization’s point of contact for EU-based individuals whose personal data you hold and for EU national regulators. EU Rep will also notify you of the nature of any complaint and can provide additional services to help, such as translation services or provision of legal advice.
-
EU-REP Global
Founded by experienced EU privacy professionals, EU-REP Global is specialized on EU representative services under Article 27 of the EU General Data Protection Regulation. Our mission is to offer a straightforward and reliable compliance solution for this obligation, which affects companies without EU establishments from all around the world and almost any industry. Thanks to our global network of privacy professionals, we are able to find the right consulting partners for any privacy-related need you may have.
-
European Data Protection Office
European Data Protection Office is a privately held company headquartered in Brussels with offices in the U.K., Spain, France, Germany and Ireland that helps non-EU companies to (continue to) have access to EU customers by enabling compliance with the EU General Data Protection Regulation obligation to appoint an EU-based representative (GDPR Article 27).
Our fees are flat and are tailored to the specific needs of every company. Our services include the following:
-The handling of an unlimited number of requests from persons in the EU.
-The handling of an unlimited number of requests from the data protection authorities.
-Assistance with the handling of an unlimited number of data breach notifications.
-The right to use EDPO’s contact details and logo on the client's website and on other company material.
-The right to use the EDPO's Compliance Certificate.
-Alerts on relevant GDPR-related news and developments regarding the client’s compliance with the GDPR.
-
European Data Protection Office
European Data Protection Office (EDPO) is located in Brussels and acts as EU representative for non-EU companies in the entire EU. That’s our only activity so we’re dedicated to providing quality representation services and related advice. We work with a team of experts from various fields, covering all aspects of the GDPR (legal, IT, security, risk management, etc.).
We deliver tailored services for a fixed annual fee, including the handling of an unlimited number of requests from data subjects and data protection authorities. We also provide our clients with a secure and certified digital GDPR Article 27 Compliance Certificate.
-
European Security Group
We provide security and privacy management consultancy to both EU and non-EU clients. We are experienced in risk-based management were we intend to help you reach the most cost effective ways to reduce the Security and Compliance Risks your organization faces.
Our main product at this time is our offering of GDPR representatives and data protection officers to organizations not located within the European Union. Please feel free to browse around on our website and do not hesitate to contact us via Skype, email or our contact form.
-
Evalian Limited
Evalian provide data protection, information security and ISO certification services. We can assist with all aspects of GDPR, data protection and ePrivacy compliance. We offer gap analysis and compliance health checks, formal auditing, privacy framework implementation, privacy notice and policy drafting, assistance with DPIAS, LIAs, international transfers, breach and subject rights support, retained support services and managed services. We also provide outsourced and virtual data protection officer services. Our consultants are suitably and experienced and qualified and support organizations of all sizes across multiple industries. We support organizations headquartered in the U.K., Channel Islands and Isle of Man.
-
Exate Technology
eXate provides data access controls in order to ensure that sensitive attributes (such as names, addresses and passport numbers) are only viewed by the right people, at the right time and in the right geography. The eXate platform delivers trust between you and your customers by using technology to uphold your regulatory and internal policies on sensitive data.
The eXate solution is unique in that it is has been designed for microdata, as well as for global complex organizations with imperfect data. The platform consists of three engines:
• Rules Engine — For the digitization of data policy, allowing it to be centrally queried and maintained while focusing on cross-border data transfers, internal policy and control of information.
• Anonymisation/Pseudonymization Engine — For data protection and applying restrictions on data.
• Reconstruction Engine — For automation of data policy enforcement by reconstructing protected data when in compliance with the Rules Engine.
The engines may be used individually, or all three engines can be used together, allowing for an enterprise-wide complete data protection solution.
To draw a parallel between the analog world and digital world, imagine cash being transported in the analog world by an armored van in its protected bags as it travels to the ATM/cash machines. If bad guys try to steal that money and rip open the bags, an ink bomb goes off rendering the cash useless. In the digital world, data is the new cash. At eXate, we are the ink bomb for data, if it is stolen we render the data obsolete.
eXate Benefits:
• Digitalization of data policy — Eliminating a currently manual process, and allowing the policy to be maintained and queried in a central location.• Centralizing the control and compliance of data — Creating efficiencies and significantly reducing cost.
• Designed for complexity and imperfect data — We expect your data quality to be a challenge and help you to simplify it.
eXate Use Cases:
• Centralized management of data policy.• Testing with production data in non-production environments (either for new releases or for testing with third parties).
• Using technology to enforce data policy and regulatory requirements.
-
Excela Associates
Since 2006, Excela has offered a full range of privacy compliance services for organizations subject to Canadian privacy legislation and the GDPR. Services include strategy and policy development, privacy impact assessments and data protection impact assessments, security policy reviews, privacy design and architecture for IT applications, and contracted privacy officer and data protection officer services.
-
Exela Technologies
Exela is a business process automation leader, leveraging a global footprint and proprietary technology to provide digital transformation solutions enhancing quality, productivity and end-user experience. With decades of expertise operating mission-critical processes, Exela serves a growing roster of more than 4,000 customers throughout 50 countries, including more than 60% of the Fortune 100. With foundational technologies spanning information management, workflow automation, and integrated communications, Exela’s software and services include multi-industry department solution suites addressing finance and accounting, human capital management, and legal management, as well as industry-specific solutions for banking, health care, insurance and public sectors. Through cloud-enabled platforms, built on a configurable stack of automation modules, and more than 22,000 employees operating in 23 countries, Exela rapidly deploys integrated technology and operations as an end-to-end digital journey partner.
-
EXL Service
At EXL, we believe there is always a better way. We look deeper, we find it and make it happen. Our solutions integrate operations management services, analytics and technology platforms to deliver immediate results and long-term business impact. We work as a strategic partner to help our clients streamline business operations, improve corporate finance, manage compliance, better adapt to change, and create new channels for growth.
Serving organizations in insurance, healthcare, banking and financial services, utilities, travel, transportation and logistics, we deliver solutions from wherever clients need them. EXL also provides functional services, such as finance and accounting, legal support, and analytics to even more industries, including professional services, retail, manufacturing and energy. Headquartered in New York, EXL has more than 24,000 professionals in locations throughout the United States, Europe, Asia, Latin America, and South Africa.
-
Experian
Experian unlocks the power of data to create opportunities for consumers, businesses and society. At life’s big moments — from buying a home or car, to sending a child to college, to growing a business exponentially by connecting it with new customers — we empower consumers and our clients to manage their data with confidence so they can maximize every opportunity.
We gather, analyze and process data in ways others can’t. We help individuals take financial control and access financial services, businesses make smarter decisions and thrive, lenders lend more responsibly, and organizations prevent identity fraud and crime.
-
Experis Consulting EMEA Manpower Group
GDPR Implementation and audit; in-house and publicly-held, tailored practical GDPR implementation and audit courses; DPO as a service; GDPR staff recruitment and training; data discovery and flow analysis; data storage limitation and solution; security and data breach response plan; privacy compliance framework development; policy/procedures/process documentation development.
-
Exterro
For over 30 years, Exterro has been helping companies manage their information compliantly and defensibly – in line with the most pressing legal and regulatory requirements. We provide legal, compliance, privacy and IT executives with critical insights and defensible compliance solutions to meet their obligations, while reducing risks and costs.
- We provide unmatched cybersecurity and privacy solutions.
- Our service delivery technology provides predictability, accuracy and speed.
- Our industry benchmarks and world-class best practice standards are relied upon by leading companies across the globe.
- Our ongoing compliance controls and frameworks are defensible in the most vital areas of corporate risk.
-
EZ Shield, Inc.
Fraud derails your customers’ lives. EZShield’s industry-leading identity protection services keep them on track to strengthen customer loyalty and boost your bottom line.
-
Faegre Baker Daniels
FaegreBD is one of the 75 largest law firms headquartered in the United States. Our locations span the U.S. from coast to coast and extend to the U.K. and China. Our 750 legal and consulting professionals partner with clients ranging from emerging startups to multinational corporations, delivering full-service advice customized to each company’s needs.
We provide solutions to your toughest challenges related to business and transactions; government and regulatory; intellectual property; labor and employment; litigation and dispute resolution; product liability; real estate, construction and environment; and wealth management. Our practices are complemented by experience across a wide range of industries, with a strategic focus on energy and natural resources, financial services, food and agribusiness, health and life sciences, and technology.
-
Fasken Martineau
Fasken is a leading international law firm with more than 700 lawyers and 10 offices on four continents. Clients rely on us for practical, innovative and cost-effective legal services. We solve the most complex business challenges, providing exceptional value and putting clients at the center of all we do.
We provide a full range of privacy and cybersecurity legal advisory services. From workplace privacy issues to cybersecurity planning and risk management, to innovative marketing and big data analytics projects, and cross-border outsourcing, we help ensure that your activities are aligned with key objectives, evolving standards and stakeholder priorities. Clients turn to us for advice regarding not only Canadian privacy and related laws, but also the EU General Data Protection Regulation.
-
Fasoo
Fasoo provides software to protect and manage your valuable assets in the ever-changing digital world. Since 2000, Fasoo has helped customers create a secure information-sharing environment and simplified secure collaboration internally and externally.
-
Fey LLC
Enterprise Content Management & Defensible Disposition
The breadth of our litigation, regulatory and technology experience enables us to assist our clients in developing and implementing holistic, company-wide content management strategies designed to allow employees to retain information needed to fulfill legal and business needs, and efficiently locate and access information, while properly and systematically disposing of “data debris.”Regulatory Compliance
Regulatory obligations impact the entire information lifecycle. Our deep knowledge of U.S. and international regulatory requirements empowers us to help clients launch information governance programs designed to meet regulatory obligations and to harmonize existing information management and security policies and practices into enterprise-wide information governance frameworks.eDiscovery & Legal Holds
We have decades of experience advising clients on a host of eDiscovery and legal hold issues, and addressing eDiscovery and legal hold practices in the context of court and regulatory proceedings. We call upon this experience in helping clients implement reasonable eDiscovery and legal hold policies, procedures and processes that fit their unique cultures and technology environments.Data Privacy & Cybersecurity
The depth of our knowledge of U.S. and international laws and regulations, enforcement actions, standards and industry guidelines provides the framework upon which we advise clients on their data privacy and protection obligations. We offer our clients a full range of data privacy and cybersecurity assistance—from guidance on secure information systems to investigating data breaches.
-
Field Fisher Waterhouse
Fieldfisher is a European law firm with market-leading practices in many of the world's most dynamic sectors. We are an exciting, forward-thinking organization with a particular focus on technology, finance and financial services, energy and natural resources, life sciences and media.
Our market-leading cybersecurity practice has a proven track record of helping clients comply with cybersecurity requirements, get ready for dealing with incidents, and deal with them effectively when they happen. Our leading cyber and data disputes team will help you deal with associated disputes and litigation.
-
Fight for the Future
Fight for the Future is a non-profit organization founded in 2011 whose mission is to ensure that the Web continues to hold freedom of expression and creativity at its core. We seek to expand the Internet’s transformative power for good, to preserve and enhance its capacity to enrich and empower. We envision a world where everyone can access the Internet affordably, free of interference or censorship and with full privacy.
-
filerskeepers
Filerskeepers helps companies decide which retention period to choose per system or document category. Filerskeepers provides data retention schedules that give insight into the legal maximum and minimum retention periods applicable in the countries relevant to them. This helps companies to justify why they are storing data (“for compliance with income tax rules”) and for how long (“for 10 years from the date following the end of the book year"). Retention schedules can be ordered one-off or as a subscription.
Our data retention schedules include:
- All country specific data retention periods relevant to your company.
- Info regarding who should keep what data, how long, when, and if it is a maximum or minimum period.
- With legal references and links to the official legal source.
- Up to date and updated frequently.
- Printer friendly format, designed for A4 printing.
- All in a handy Excel format.
-
finReg360
Services new technologies and data protection
Advice on data protection:
- Adaptation to the EU General Data Protection Regulation.
- Outsourcing of functions data protection officer.
- EU data protection representative services.
- Recurring advice on data protection.
- Privacy from design and data protection impact assessment.
- Penalty and litigation procedures in data protection.
- Reports and legal opinions.
Advice on process and business digitalization projects:
- Structuring of new activities and accompaniment in digital transformation processes.
- Advice on big data, data analytics, artificial intelligence and cybersecurity.
- Complementing activities by aggregating accounts (PSD2).
- Preparation and negotiation of contracts.
E-commerce and websites:
- Mobile payments and applications.
- Legal notice and cookies.
Intellectual property and trade secrets:
- Computer contracting.
- Software, assignment of rights and licenses of use.
- Advice on software protection.
- Confidentiality and business secrets.
- Right to honor and image.
Data protection and privacy training
-
FireEye
The FireEye Ecosystem combines technology and expertise for the best security posture. We deliver a complete suite of detection, protection and investigation capabilities with network, endpoint, and email security solutions under a unified security operations platform, Helix.
Our Mandiant Consulting, Managed Defense, and Threat Intelligence services augment organizations with the resources and knowledge necessary to respond to and protect organizations against even the most advanced threats. Every day at FireEye, we see firsthand the impact of cyberattacks on real people. This is what inspires us to fulfill our mission to relentlessly protect our customers from the impact and consequences of cyberattacks.
-
FireMon
FireMon delivers continuous security for hybrid enterprises through a powerful fusion of vulnerability management, compliance and orchestration. Since creating the first-ever network security policy management solution, FireMon has continued to deliver visibility into and control over complex network security infrastructures, policies and risk postures.
-
Firesand Limited
GDPR Consultancy and DPO Services
- Firesand can help you put together a framework to apply cost-effective controls that are continuously monitored and tracked to ensure your organisation remains compliant.
Additionally, Firesand provides data protection officer services to ensure you stay abreast of the regulatory changes, and develop a bridge between the organization and the supervisory authority to ensure a clear line of communication between the two entities.
With regular compliance assurance reports we could validate the posture of your organisation on an on-going basis and provide a roadmap to reach end-state to compliance.Cloud Security Architects
- Firesand are cloud security specialists/architects who define strategic security objectives to support large-scale cloud migrations. We develop cloud security design frameworks for new technology solutions being delivered by IT, including integrations with existing technologies.
Firesand can help you align with IT service management frameworks and security controls (eg ITIL, COBIT, ISO27001), and cloud computing standards eg (ISO 17788/17789, CSA)."
-
Focal Point Data Risk
At Focal Point Data Risk, we help our clients build secure and flexible risk management programs centered around their critical data, providing a comprehensive answer to the risks surrounding malicious cyber threats, data privacy and security challenges, shifting compliance mandates, and complex system implementation initiatives. We bring together a combination of services and expertise that simply doesn’t exist anywhere else in the market, with diverse offerings that span cyber security, data privacy and analytics, identity governance and access management, hands-on security training, ERP advisory, and internal audit services. This combination of capabilities has been deliberately assembled to provide clients with everything they need to secure their business, leverage their data and ensure compliance across the enterprise.
-
Foley & Lardner LLP
Foley & Lardner looks beyond the law to focus on the constantly evolving demands facing our clients and their industries.
While most in leadership positions today recognize the heightened importance of information security risks in their organization, few understand what actions should be taken to address these risks. At Foley, we help demystify cybersecurity for senior management and directors, as well as IT executives, by identifying short- and long-term critical steps to address, respond to, and mitigate the risks associated with data security.
-
Follosco Morallo & Herce
The FMH Data Privacy Team is composed of a specialized team of lawyers and paralegals trained for the purpose of delivering quality data privacy consultancy services. It caters to the end-to-end needs of companies and individuals with respect to data privacy compliance by conducting data privacy compliance audit, initiating privacy impact assessments, drafting privacy manuals and privacy policies, and reviewing contracts and forms. The team also offers data privacy consultancy services on various day-to-day data privacy concerns and issues. Likewise, it conducts generic and bespoke personnel training and data privacy briefings for various companies.
-
Forcepoint
Forcepoint is the human-centric cybersecurity company that understands behavior and adapts security response and enforcement to risk. The Forcepoint Human Point platform delivers Risk-Adaptive Protection to continuously ensure trusted use of critical data and systems. Based in Austin, Texas, Forcepoint protects data and identities for thousands of enterprise and government customers in more than 150 countries.
-
Forescout Technologies Inc.
Forescout Technologies provides security at first sight. Our company delivers device visibility and control to enable enterprises and government agencies to gain complete situational awareness of their environment and orchestrate action.
-
Fortinet, Inc.
Fortinet secures the largest enterprise, service provider and government organizations around the world. Fortinet empowers its customers with intelligent, seamless protection across the expanding attack surface and the power to take on ever-increasing performance requirements of the borderless network — today and into the future. Only the Fortinet Security Fabric architecture can deliver security without compromise to address the most critical security challenges, whether in networked, application, cloud or mobile environments.
-
FourthLine Limited
FourthLine is a highly specialized risk and regulatory recruiter.
We are proud to have the largest data protection recruitment team in the U.K., there are 14 of us focused on permanent and interim hires across multiple sectors. We place data protection practitioners, data protection lawyers and change professionals.
We assess each and every candidate that comes to us via our bespoke Core Competency Framework and we run an annual events schedule designed to help us work with only the best available talent in the regulatory market.
-
Fox Rothschild LLP
Fox Rothschild is an AmLaw 100 full-service law firm built to serve businesses of all sizes, as well as individuals. Our lawyers provide a full range of legal services to public and private companies — from family-run businesses to multinational corporations — centered around several core areas: corporate, employee benefits, entertainment, financial restructuring and bankruptcy, intellectual property, labor and employment, litigation, real estate, and taxation and wealth planning.
Fox Rothschild’s experienced Privacy & Data Security team works with clients to assess their GDPR exposure and design policies and procedures to mitigate risks. We use our detailed knowledge of EU data protection law, coupled with our understanding of the unique challenges it poses to U.S.-based corporations, to create pragmatic, actionable, tailored plans toward GDPR readiness. Fox Rothschild can help companies prepare for CCPA compliance, avoid costly penalties and develop a competitive advantage on issues of privacy and data security. Fox also advises insurers, medical debt collectors, health-related software providers and other entities that come into contact with PHI and can be held accountable for failing to keep it private in the event of a breach. In fact, Fox was one of the first law firms in the country to appoint its own HIPAA privacy and security officer. Fox partners with clients in the never-ending battle against data thieves. We work with clients’ IT departments to understand and address their ongoing challenges and help track federal and state enforcement initiatives that regulate the gathering, use, retention and disposal of private information.
-
FP Logue
FP Logue is a law firm based in Dublin, specialising in technology, intellectual property, data protection and information law. Our primary focus is on business clients in technology, innovation and brand sectors. As a small niche firm we can provide advice and expertise of the highest calibre, combined with excellent value and flexible service. As well as our commercial clients, we also advise public bodies, charities and individuals, particularly in our regulatory and information law practice areas.
-
Fragomen, Del Rey, Bernsen & Loewy, LLP
Fragomen, Del Rey, Bernsen & Loewy and Fragomen Global (collectively known as “Fragomen”) is a leading firm dedicated exclusively to immigration services worldwide.
Whether your company is sending employees to a specific country or expanding to destinations around the world, Fragomen is here to help.
-
Free Press
We're working to create a world where people have the information and opportunities they need to tell their own stories, hold leaders accountable, and participate in our democracy. We fight to save the free and open Internet, curb runaway media consolidation, protect press freedom, and ensure diverse voices are represented in our media.
-
Future of Privacy Forum
FPF is a Washington, DC, based think tank that seeks to advance responsible data practices. The forum is led by Internet privacy experts Jules Polonetsky and Christopher Wolf and includes an advisory board comprised of leading figures from industry, academia, law and advocacy groups.
-
Futurex
For more than 35 years, Futurex has been a globally recognized provider of enterprise-class data encryption solutions. More than 15,000 customers worldwide have trusted Futurex's innovative technology to provide market-leading solutions for the secure encryption, storage and transmission of sensitive data. Futurex maintains an unyielding commitment to offering advanced, standards-compliant data and encryption solutions.
-
G2.com
G2.com is where you go for software, including privacy software. We help people choose the right software and services for their business based on more than 1,145,500 authentic, timely reviews from real users.
G2 is the world’s largest technology marketplace where businesses can discover, review and manage the technology they need to reach their potential. We provide unique, authentic and verified peer advice in real-time. We give buyers better guidance than traditional analyst firms, which can take up to two years to update and publish technology research. That timeline just can’t keep up with the pace of technology.
At G2, we aim to be a trusted source that helps every business professional in the world make better technology decisions.
-
G4S
G4S Risk Consulting supports clients to evaluate and understand the risks they and their organisations may face, acting to mitigate these risks wherever possible, and providing the tools to fully prepare clients to react successfully to a crisis should it occur. We offer trusted security advice, risk mitigation strategies, secure support and integrated solutions for strategic clients or those operating in complex or sensitive environments. Whether threats are from crime or terrorism, or simply from entering new ventures markets or territories, we work to design and implement effective measures to mitigate or manage these risks. Should the unexpected happen, we can support clients in times of emergency or crisis.
We enable our clients to develop resilience to business risk by providing:
- Proactive intelligence gathering, analysis and research, using the latest techniques and processes.
- World class risk advisory and mitigation services.
- Outstanding crisis management and response capability.
- Expert advice on risk management technologies.
- Specialist training and capacity building programmes.
-
G5 Cyber Security, Inc.
Below is a list of the data privacy services we offer:
- Privacy compliance assessment.
- Data protection impact assessment.
- Privacy control services.
- Privacy protection services.
- Privacy remediation support.
- Merger and acquisition privacy assessment.
- Privacy process services.
- Outsourced data protection officer services.
- Privacy identification services.
- Privacy governance services.
- Privacy communication services.
- Data privacy breach management support services.
- Data privacy process planning services.
- Document review and drafting services.
- Data protection gap analysis services.
- Personal data mapping services.
- Privacy user services.
- Privacy program advisory services.
- Staff training and awareness services.
- Data privacy support helpline services.
-
GAGDPR
- Full DPO services.
- Compliance services.
- Business consultancy.
-
GarbleCloud
GarbleCloud is the "Data Privacy-as-a-Service" provider for the cloud. We enable businesses and individuals who need to protect their data that is strewn across multiple cloud-based platforms (such as Google Drive and Dropbox) — with an ultra-secure cost-effective solution. Garblecloud's patented technology harnesses the advances in cloud computing to enable encrypted file management at scale, without breaking the functionality of the various SaaS applications. This means that whether you are using Google Drive, DropBox, Slack, OneDrive or any other cloud-based application, you control how the application and other users access your data, for what purpose, in what form and for how long.
-
Gartner, Inc.
Gartner Consulting provides fact-based consulting services to help our clients use and manage IT to enable business performance. We bring together Research insight, Benchmarking data, problem-solving methodologies and hands on experience to improve the return on your IT investment.
Understanding
- 80% of the Fortune 500 use Gartner for their key technology initiatives.
- We deliver business value in over 1500 high-impact initiatives a year.
- Every year, we deliver over 5,500 IT cost and performance benchmarks.
Capabilities
- Gartner solutions address the specific needs of each industry.
- All of our solutions are based on Gartner's extensive Research.
- Every solution makes use of our performance benchmarking data.
- We employ seasoned consultants, with an average of 15 years experience.
Experience
- Our clients spend 38% less than their peers for the same workload.
- Gartner Contract Optimization Services help our clients realize hundreds of millions of dollars of real and measured savings annually.
- Our consulting engagements help clients improve performance and reduce risk.
-
GDPR Analytics Ltd
The GDPR Data Mapper app assists all businesses in performing personal data information audits, enabling the four key tasks of identification, classification, discovery and reporting of this data. Through a series of prompts and questions, the app invites the user to submit their GDPR-centric data to develop data flow maps. The maps reflect various data flow processes, such as sales, recruitment, purchasing, marketing, etc. From the maps, executive reports are generated showing the nature and sensitivity of the data and risks to the business. The user then decides how to protect this data, leading to full GDPR compliance.
-
GDPR Consulting
- Services in charge of data protection.
- Information and advice to all those responsible for personal data and their treatment.
- Control of compliance with the regulation.
- Control and advice in impact assessment on data protection.
- Cooperation with the supervisory authority.
- Point of contact with the supervisory authority.
-
GDPR Local
Article 27 of the EU General Data Protection Regulation includes a requirement for companies that provide goods and services to EU citizens provide an EU-based representative so data subjects and regulators can easily contact companies to raise data protection issues or concerns.
Now that the U.K. has left the EU, the situation becomes slightly more complicated, and most companies outside of the U.K. will now need a U.K. representative. So, if you have customers, employees or suppliers in either the U.K. or the EU, you will need a representative to act as your agent in each territory.
If you need an EU and/or U.K. representative to ensure you meet your GDPR Article 27 obligations, we can help.
-
GDPR Register
GDPR Register is a software tool for data protection officers and privacy teams to help manage privacy documentation such as
• data mapping flows;
• records of processing activities;
• data processing agreements;
• breach management, and
• data subject requestsGDPR Register allows managing multiple companies from a single interface making it the perfect tool for groups of companies and DPO-as-a-service providers.
Our customers value the simplicity of user interface and fast onboarding allowing them to concentrate on everyday tasks instead of managing complex setup procedures and long training cycles. An unlimited number of users and well-designed user permission levels coupled with task management improve collaboration with data stakeholders. It unloads DPOs and helps them concentrate on important things.
Templates improve operations efficiency and standardization of approaches between companies.
GDPR Register fits for UK and EU General Data Protection Regulation, South Africa's Protection of Personal Information Act, Switzerland's New Federal Act on Data Protection and other privacy regulations.
-
GDPR-info Ltd
Many companies will need the services of a data protection officer and it’s hard to justify employing your own full time DPO. We provide you with someone who understands data protection law, acting independently to make sure your business stays on track. Advising you on how to comply; evaluating the impact on data compliance as workflows change. Providing access to a virtual data protection specialist who offers sound advice, can train staff, so minimizing the risk of a data breach. Our DPO service offers privacy impact analysis, annual audits and reports – strengthening your organizations survival.
-
GDPRsimple
GDPRsimple is a SaaS product that helps small- and medium-sized enterprises implement the EU General Data Protection Regulation. It is designed for SMEs that do not have a chief privacy officer and for SMEs that have a CPO who is resource-constrained. Having extracted what to do from the GDPR's 204 pages and having interpreted guidance and materials from professionals, GDPRsimple has compiled the essential information SMEs need. GDPRsimple addresses an organization's pain points by making it easy to learn about GDPR implementation and document those efforts for organizational partners, customers, funders, auditors and regulators.
-
Gemserv
Gemserv offers data privacy and data protection consultancy including validation audit, risk assessment, pragmatic and practical implementation recommendations, project and program management and governance framework and strategy development. We also provide virtual DPO services to support in-house resources and preparation for forthcoming privacy and data protection challenges such as IOT and AI assurance.
-
General Dynamics
At General Dynamics Mission Systems, a business unit of General Dynamics, we develop mission critical C4ISR solutions across the land, sea, air, space and cyber domains.
The Cyber Domain crosses and integrates with all domains — Land, Sea, Air and Space. We’re designing, building and delivering products rapidly to strengthen the mission and help our customers successfully navigate the cyber ecosystem.
-
General Dynamics Fidelis Cybersecurity Solutions
Fidelis Cybersecurity is a leading provider of threat detection, hunting and response solutions. Fidelis combats the full spectrum of cyber-crime, data theft and espionage by providing full visibility across hybrid cloud/on-premise environments, automating threat and data theft detection, empowering threat hunting and optimizing incident response with context, speed and accuracy.
-
George Ide
Clients looking at getting expert legal advice, whether in regard to wills and probate, employment advice or commercial property advice, get in touch with George Ide today.
-
Ghostery
Ghostery offers several privacy solutions, including its Ad Notice tool, which helps organizations to give their consumers control to the ads served. This tool ensures companies stay compliant with AdChoices, while giving consumers transparency into what ads a company is delivering to them. Ghostery also has a GDPR Assessment Report to help companies comply with the upcoming regulation by identifying third-party activity on their website while offering privacy analysis.
-
Gibson, Dunn & Crutcher LLP
Gibson, Dunn & Crutcher is a leading international law firm that advises clients on significant transactions and disputes around the world.
Gibson, Dunn & Crutcher’s Privacy, Cybersecurity and Consumer Protection Practice Group has a demonstrated history of helping companies successfully navigate the complex and rapidly evolving laws, regulations and industry best practices relating to privacy, cybersecurity and consumer protection. Our global and interdisciplinary team advises clients across a broad range of industries in high-stakes matters on the full spectrum of issues in these areas.
-
Glenmont Group
Glenmont Group is a full-service executive search firm offering an array of recruiting solutions to its law firm, corporate and professional services clients. Our objective is to help our clients to strengthen and improve their organizations by maximizing their most valuable asset, their human capital. Glenmont Group's talent acquisition strategy is a combination of our ability to recruit talent, leverage the latest technologies and effectively use social media. This proven approach equates to a smooth hiring process and successful placements.
-
Global Digital Forensics
GDF was originally founded in 1992 to fill a gap in the growing electronic discovery, network forensics and cybersecurity markets, based on a foundation of real-world experience GDF’s founder acquired from over a decade as a leading provider of emergency data recovery services before that.
Today, GDF not only assists attorneys with major class action suits and in complex litigation, but also assists with all aspects of cybersecurity, from cyber emergency response to data breaches and cyber intrusions, to comprehensive cyberthreat assessments, penetration testing and threat remediation to help them survive and thrive in today’s ever-evolving cyberthreat landscape.
-
Global IDs
Global IDs has built one of the most scalable, flexible, adaptive software suites that can meet the needs of the world's largest organizations. Global IDs is empowering some of the most complex enterprises by integrating and organizing the information to create a holistic understanding of the enterprise data ecosystem.
For almost 15 years, Global IDs has been providing data management software products to some of the largest retail, financial, telecom, pharmaceutical and healthcare companies in the world. With a growing global presence, we are expanding to multiple regions around the world and hope to serve the majority of Global 2000 customers in the near future.
-
Globig Inc.
Globig is an international business and HR productivity SaaS platform that includes GDPR compliance process and reporting management tools, and data security for international teams. The services marketplace makes it easy to procure GDPR consultants, fractional DPOs, recruiting services, legal, accounting, payroll and other vetted experts around the world.
-
Goodmans LLP
Goodmans is recognized internationally as one of Canada's premier transaction law firms because our lawyers and clients are industry leaders. Our lawyers excel in their fields to help clients excel in theirs — both ensuring ever-higher levels of service and business success. Further, we offer a unique combination of skills — spanning business law and litigation; public and private; tradition and innovation.
Goodmans’ Privacy Law practice focuses on assisting businesses to manage these privacy and security requirements in a proactive and commercially sensitive manner. Not only do we advise on how to comply with Canada’s federal and provincial privacy laws, placed in an international context, but have also substantial experience helping businesses negotiate privacy and security sensitive transactions, such as outsourcing and services agreements. We often deal with the privacy issues of businesses that operate in many jurisdictions, reconciling, for example, the privacy and data protection requirements of the Canada, the United States and Europe.
-
Gowlings Lafleur Henderson LLP
Gowling WLG is an international law firm built on the belief that the best way to serve you is to be in tune with your world, aligned with your opportunity and ambitious for your success.
Our team has developed an international perspective from working with technical experts in threat risk assessment and produces reports on the latest developments in privacy and information management. We can keep you at the forefront of privacy compliance, advocacy and data management.
-
Grable Martin Fulton
Our attorneys working in the field of privacy and data security law help companies navigate the often-complex requirements of these privacy and data security laws, including:
Advising on a wide range of privacy and data security measures such as:
- Data breach response.
- Data breach prevention.
- Privacy and security audits.
Assisting companies with compliance related to relevant domestic and international privacy and data security regulations and laws in areas such as:
- Data collection and processing data.
- Transfer procedures.
- Privacy policies.
- Marketing activities.
-
Grant Thornton Ireland
As the fastest growing professional services firm in Ireland, Grant Thornton provides privacy and GDPR-related services, including:
- Privacy compliance strategy.
- Data protection operating model design and implementation.
- Privacy Gap analysis.
- Data Protection Officer as a Service.
- Data Protection Impact Assessments.
- Data breach response.
- Privacy training and Board education.
- Data protection audits and reviews.
-
Grant Thornton LLP
Grant Thornton LLP is the U.S. member firm of Grant Thornton International Ltd., one of the world’s leading organizations of independent audit, tax and advisory firms. They service many different industries, including privacy equity.
-
GRCI Law Limited
GRCI Law is a legal risk and compliance consultancy firm that specializes in data protection/data privacy and cybersecurity law.
-
Greenberg Traurig LLP
Greenberg Traurig's Cybersecurity & Privacy Practice features a multidisciplinary team of attorneys who counsel clients on their data security, incident response, privacy and information management needs. We advise on a wide variety of cybersecurity and privacy matters, including privacy audits, policies and procedures; risk mitigation; data security and PCI compliance; GDPR compliance, CCPA compliance, employee privacy; record retention and electronic discovery; international and cross-border data transfer; data breach readiness, response and crisis management; and data privacy, security breach, CAN-SPAM Act, and TCPA issues. Our attorneys are well versed in privacy- and data security-related legislation and regulations in the United States on both state and federal levels, as well as in the European Union, Mexico, and Asia. We assist clients in becoming compliant with cybersecurity rules, regulations and initiatives issued by the U.S. Securities and Exchange Commission, FINRA, FFIEC and OCC. GT lawyers also defend data privacy, security breach and TCPA class-action suits in the United States. Our team delivers an integrated approach in addressing enterprise legal, business and security needs. The ingenuity and versatility of our attorneys, coupled with our global network, allow us to develop effective, widespread strategies for addressing cybersecurity, data and privacy matters worldwide.
-
gryphon.ai
Gryphon’s award winning Sales Intelligence Platform enables automatic capture and control of all phone activity from any device in real-time.
Gryphon’s sophisticated analytics engine processes call data including the audio of conversations and delivers intuitive, actionable insights for sales leaders in stunning and highly accurate dashboard views. As a result, sales leaders can measure and manage the activities of distributed agents calling from any phone, anywhere. This has made Gryphon the go-to application for the largest banks, brokerage, insurance and consumer services firms in North America.
-
GTC Law Group LLP
GTC was founded in 2002 on the belief that the traditional law firm model should be redefined in order to attract the most innovative legal minds and truly partner with clients. We created a distinctly different firm, organized to be as efficient and nimble as the growth enterprises we serve.
-
Gün + Partners
Gün + Partners is a full-service institutional law firm with a strategic international vision, providing transactional, advisory and dispute resolution services.
-
gunnercooke
Our experienced lawyers provide comprehensive legal services and advice on European data protection law with in-depth local expertise. For matters outside the EU, we work closely with our U.K. and U.S. colleagues.
We advise our clients on a wide range of data protection matters, including the development and implementation of data protection policies, data retention, storage and deletion strategies, and the handling of data protection complaints and investigations. Our team is well versed in the data protection requirements of specific laws such as employment and competition law, ensuring that our advice is not only legally sound but also compliant with local regulations in practice.
We conduct thorough reviews of data collection, use and transfer practices in various jurisdictions and assist in the negotiation and drafting of data transfer and sharing agreements. In addition to privacy training, our services include conducting data protection and information security audits and risk assessments.
If required, we can take on the role of a data protection officer or EU representative.
-
Gurucul
Gurucul is a global cybersecurity company that is changing the way organizations protect their most valuable assets, data and information from insider and external threats, both on-premises and in the cloud. Gurucul’s real-time behavior-based security analytics and intelligence technology combines machine learning behavior profiling with predictive risk-scoring algorithms to predict, detect and prevent breaches, fraud and insider threats. Gurucul’s Identity Analytics technology reduces the attack surface for accounts and eliminates unnecessary access rights and privileges.
-
Halo Privacy
Halo Privacy runs its solutions through its Halo – Corona privacy appliance, allowing for companies to use its collaboration and messaging applications. Halo offers software to let users bring all of their communications under one roof, providing private, real-time messaging and searchable archives. Halo also lets an organization secure all their information onto the privacy platform, and allows users to securely deliver emails on the platforms they currently use. The company also offers a secure VPN option.
-
Hamlyns
Hamylns is a Surrey-based firm providing expert and experienced accounting and registered auditing services to startups, entrepreneurs and businesses in Woking, Dorking and Leatherhead. Our expertise includes managing compliance and advisory services such as payroll, bookkeeping, investment schemes and strategic planning. Contact us today for comprehensive accounting services.
-
Hanlon Security
Halon is a flexible security and operations platform for in-transit email. It enables companies that build and operate large-scale email services to offer competitive features by rapid implementation and to lower costs of maintenance through reliable deployment and reduced complexity.
-
Harris, Wiltshire & Grannis
Harris, Wiltshire & Grannis LLP provides comprehensive privacy and cybersecurity representation for communications, information technology, digital marketing, aerospace, defense, health care‐related, and internet‐enabled‐product businesses. Our experienced team draws on years of senior government service as regulators, trade negotiators, and prosecutors, in addition to in‐depth corporate transactional experience, for a comprehensive understanding of the privacy and data security landscape.
-
Hartford Steam Boiler
Hartford Steam Boiler, a proud part of Munich Re, is a leading engineering and technical risk insurer providing equipment breakdown and other specialty coverages, inspection services and engineering consulting. HSB provides clients with risk solutions tailored to their needs and strategies to optimize the reliability, lifespan and efficiency of their equipment and operations.
-
Hassans International Law Firm
From commercial law to property law, corporate law to litigation issues and data protection to financial technology, Hassans International Law Firm can really do it all.
Based in Gibraltar, the team of expert lawyers started in 1939 and is now one of the world's leading law firms. Serving clients across the world, the firm ranks top in its field continuously by the industry’s leading research directories. Find out more here.
-
Hayes Associates Limited
Analysis of information and processes to ensure both optimum efficiency and compliance with data protection requirements. Experience with compliance in financial services, health, recruitment and marketing industries.
-
Haynes and Boone, LLP
Haynes and Boone is an international corporate law firm with offices in Texas, New York, California, Charlotte, Chicago, Denver, Washington, London, Mexico City and Shanghai, providing a full spectrum of legal services in technology, financial services, energy and private equity.
-
HCL
Our “Dynamic Cybersecurity Framework” helps our customers move from a “static” to a “dynamic” posture to deal with an ever-escalating threat landscape, offering full spectrum of services.
Strategy, Architecture & Consulting Services
- Architecture services.
- Assessment services.
- Compliance & risk assessment services.
- Business impact analysis.
- Project / program management.
Transformation & integration services
- Solution design.
- Solution implementation.
- Product integrations.
Cyber threat intelligence
- Security incident and response management.
- Emergency threat response.
- Security technology management.
- Managed endpoint security.
- Managed identity & access management.
- Vulnerability assessment & penetration testing.
- Assurance services.
- BCP/DR management.
- Application security services.
- User behavior analytics.
- Managed detection & response.
-
HDC
As a law firm, we accompany Swiss and foreign companies as well as federal and cantonal public bodies with projects related to cutting-edge data protection questions. This includes, among others, GDPR and Swiss FADP compliance projects, audits, internal investigations, privacy impact assessments, in-house trainings, negotiation of outsourcing contracts, international transfer of data, strategy, litigation and representation before data protection authorities.
-
Health Law Consultancy
The Health Law Consultancy is a Chicago boutique law firm that delivers strategic legal counsel that enables health organizations to capitalize on the opportunities and manage the challenges in health law.
-
Herbert Smith LLP
Herbert Smith Freehills is one of the world’s leading professional services businesses, bringing together the best people across our 27 offices, to meet all your legal services needs globally. We can help you realise opportunities while managing risk.
Our global cybersecurity team has an unrivaled breadth and depth of expertise and includes specialists from our data privacy, financial services regulatory, corporate crime and investigations, and insurance and employment practices, among others. As a global full-service firm, we are able to advise on cybersecurity issues wherever they may arise and simultaneously across multiple jurisdictions where an incident requires it. Our team advises across the full cybersecurity lifecycle, including before-the-event cyber risk management, incident response and non-contentious transactional and project work.
-
HewardMills
HewardMills provides the best available data protection officer support for multinational companies with its core team of data professionals. It provides regulatory advice to help clients comply with the GDPR, ePrivacy Regulations, and cybersecurity, as well as the legal and regulatory requirements arising from emerging technologies.
We have a multidisciplinary team of data protection practitioners, lawyers, corporate governance and cybersecurity experts with a wealth of knowledge delivering data protection excellence and trust to you and your organization.
-
Hewlett-Packard Enterprise
Services
The HPE Security Services team and security partner ecosystem can help support your business goals with a 360 degree cyber risk assessment. Our IT protection services cover infrastructure, software, networks, storage and data.Software Solutions
such as HPE ArcSight SIEM give you powerful detection and response capabilities. Use our tools, methodologies and analytics to conduct predictive security, analyze logs and prioritize security events.Hardware
HPE backup and recovery solutions protect your information intelligently across physical, virtual and cloud infrastructures. You get visibility, access and control of information via any endpoint device.
-
Heymans Consulting
Heymans Consulting is a Data Protection company that has in depth experience with Data Privacy, already more than 10 years before the new General Data Protection Regulation was published. Since the GDPR has been published, Heymans Consulting has been one of the first consulting firms to invest in understanding the requirements and the impact the Regulation would have on medium and large organizations.
In that context we are partnering with companies from different sectors and we support them build their roadmap to success, designing the action plan and providing specialized resources to achieve the objectives.
Our clientele includes most of the financial institutions active in Belgium as well as organizations from a variety of sectors, namely telecommunications, healthcare, marketing, manufacturing and others.
Services include:
Security Consulting
- Vulnerability Management.
- Infrastructure refreshment projects.
- Security network (VPN, firewall solutions).
- Business continuity and Disaster recovery plan.
- Penetrating testing-code review.
-
Hillstone Networks
Hillstone Networks’ family of enterprise security and risk management solutions provide visibility, intelligence and protection to ensure enterprises can comprehensively see, thoroughly understand and rapidly act against cyberthreats. Recognized by leading analysts, Hillstone solutions easily deploy from the edge to the cloud providing a scalable security suite that fits any enterprise. Our “Security that Works!” mantra was born from customers frustrated with hyperbolic competitor claims who then experienced Hillstone’s family of security and risk management solutions.
-
Hinch Newman LLP
Represents digital marketers in legal regulatory-related data privacy compliance and litigation matters.
-
HIPAAT International Inc
Software rules engine to adjudicate consumer, organization and jurisdiction privacy directives/rules.
-
Hiscox Inc.
Hiscox USA's portfolio of specialty risk solutions include insurance covering a broad spectrum of professional E&O, GL, cyber and data security, media liability, entertainment production risks, D&O and management liability, crime, kidnap and ransom, terrorism and commercial property products.
A targeted hack or simply a lost laptop could result in a company incurring various costs and expenses. A cyber policy is designed to cover privacy, data and network exposures and provide peace of mind. Whether it is sensitive client or employee information, there are increasing expectations that this information is secure. The list of regulations and statutes regarding the use and protection of this information and notification in the event of a breach continues to expand.
-
HLB System Solutions
Beyond general privacy consulting and advisory services, HLB System Solutions specializes in the scanning of client networks for personally identifiable information and the remediation of the risk associated with this information. This approach addresses information privacy and data breach risks at the source — the PII itself — and is in line with recommendations from governing bodies and the Fair Information Principles. The result is PII that is appropriately safeguarded and documentation that proves that your organization is handling PII with care and diligence.
-
Hogan Lovells US LLP
Hogan Lovells is a global legal practice that helps corporations, financial institutions and governments across the spectrum of their business and legal issues globally and locally.
Hogan Lovells conducted a comprehensive review of client data privacy and security practices of Bloomberg L.P., culminating in a public report. Our team regularly counsels companies on EU privacy developments and compliance strategies, including for the cross-border transfer of personal data. We performed an intensive review of privacy safeguards and prepared a strategic plan for a defense contractor's privacy and data protection program.
-
hoggo
Hoggo helps businesses identify and mitigate privacy risks effectively. Founded by certified privacy professionals and IT specialists, our mission is to promote trust and transparency around data privacy practices. By using hoggo, businesses get free access to hundreds of vendor risk profiles and trust grades, generated automatically by using public sources and questionnaire responses. The platform streamlines and simplifies vendor management and risk assessments, while replacing manual and resource-intensive due-diligence processes. Furthermore, the vendor approval process can be reduced by 37%, thus saving resources for both the company that conducts the assessment and the one undergoing it.
-
Holland & Hart, LLP
Founded in 1947, Holland & Hart is a full-service Am Law 200 firm with offices in eight states and in Washington. We deliver integrated legal solutions to regional, national and international clients of all sizes in a diverse range of industries.
Our multidisciplinary team provides practical legal risk management and compliance guidance relating to the challenges of using both established and emerging technologies with regulated and sensitive data. We combine comprehensive knowledge of the most recent developments in the rapidly expanding area of data privacy and cybersecurity law with pragmatic understanding of how information technology actually works within a company or organization, both in the United States and abroad. We have helped organizations from emerging startups to established Fortune 100 companies resolve more than 200 data breach incidents. And, if litigation or enforcement actions result from a breach, we provide experienced, vigorous defense.
-
Holland & Knight LLP
Holland & Knight’s Cybersecurity, Data Breach and Privacy Team works across sectors and practice areas to provide comprehensive and strategic counsel on these core business imperatives.
We offer experienced guidance regarding cybersecurity and privacy risks to clients, assistance on enterprise risk and compliance, cybersecurity and privacy program assessments and evaluations, data governance and mapping, in-depth understanding of what privacy by design and security by design mean to a public or private entity, proactive policy best practices, government affairs and lobbying support, cybersecurity exercises, and tabletops and simulations, as well as emergency data breach coaching, response, investigation and assistance, liability mitigation and crisis communications.
-
Hopkins & Carley
Hopkins & Carley’s Data Privacy & Security group provides the full spectrum of counseling in data rights, security and privacy to clients across various industries, including gaming, retail, software, hardware and emerging technologies. Our experienced CIPP-certified privacy attorneys are well versed in privacy and data security related regulation in the United States on both state and federal levels, as well as in the European Union with the General Data Protection Regulation. Our experienced team is able to cut to the core issues and quickly bring a level of efficiency and value per dollar of legal fees that we believe is among the best in the legal market.
Hopkins & Carley’s attorneys work collaboratively across multiple functions (product, marketing, engineering and communications) and with various stakeholders within organizations to advise and provide cost-effective solutions on a broad spectrum of privacy and security matters and issues, including:
- California Consumer Privacy Act compliance.
- Global privacy compliance strategies and implementation.
- Risk assessments and strategies.
- Internal- and outward-facing privacy and security policies.
- EU data protection compliance (GDPR), including documentation requirements.
- Children's Online Privacy Protection Act.
- Security incidents and breach notification requirements.
- Privacy analysis regarding technology transactions, merger-and-acquisition deals, and financings.
- Third-party vendor relationships and risk assessments and data processing agreements.
- Employee and stakeholder training for the GDPR and CCPA.
- Litigation defense.
-
Hudson Cook LLP
Hudson Cook focuses on state and federal consumer and commercial financial services, banking and privacy compliance, regulation, enforcement and supervision. From our nationwide offices, we work to provide local, national and international clients with practical, efficient and innovative solutions that advance their underlying business goals.
-
Human Sparks Pty Ltd.
Human Sparks addresses data protection and privacy-related risks through its expert consulting services and application platform. These services include:
- Data governance risk-based assessments.
- Data governance policy development.
- Data governance program implementations.
- Addressing data privacy risks during digital transformations.
- Data protection officer (DPO) as a service.
- Digital transformation risk management service and application platform called Looprisk.
-
Hunton Andrews Kurth
Hunton Andrews Kurth’s privacy and cybersecurity practice helps companies manage data and mitigate risks at every step of the information life cycle. Our privacy and cybersecurity practice is a leader in its field and our firm has been ranked by Computerworld magazine as the top law firm globally for privacy and data security in all of its surveys. Chambers and Partners also ranked Hunton Andrews Kurth for privacy and data security practice in its Chambers Global, Chambers Europe, Chambers USA and Chambers UK guides.
-
Huron Consulting Group
Huron is a global consultancy that helps our clients drive growth, enhance performance and sustain leadership in the markets they serve. We partner with them to develop strategies and implement solutions that enable the transformative change our clients need to own their future.
-
IBM Data Privacy Services
IBM Data Privacy Services can help you establish policies that govern the way your organization gathers and manages data to reduce that risk and ensure you meet global privacy goals. With Total Privacy Management, IBM helps you understand, analyze, govern and control privacy from the strategic level down to the data level.
-
Ice Miller LLP
As former information technology professionals, system engineers, and analysts, our attorneys understand the technologies involved in data and are able to effectively and efficiently advise clients on all aspects of the complex business, technological, legal and regulatory issues that relate to protecting such information. With experience throughout multiple legal disciplines, Ice Miller provides end-to-end coverage of privacy and data security issues. We aid clients in developing information privacy and security programs, modifying such programs to reflect changes in the business or legal landscape and investigating and responding as quickly as possible to incidents that might arise.
-
ICTRecht
ICTRecht can help your organization comply with the EU General Data Protection Regulation. With 15 years of experience in the field, we are perfectly equipped to advise you about privacy compliance and risks. With more than 60 colleagues, we serve a broad portfolio of clients, who range from multinationals to SMEs and start-ups. Our privacy experts offer support in a variety of ways. We provide DPO as a service, monitor compliance, draft or review legally required privacy documents (such as privacy statements, DPIAs, and data processing agreements), and advise about related risks. ICTRecht also offers several privacy books (in Dutch), privacy trainings and fact sheets.
-
ID Experts
ID Experts is a leading provider of identity protection and data breach services for companies and individuals throughout the U.S. We combine consumer-centric software and concierge-style professional services in serving organizations across government, health care, commercial enterprises, financial institutions and higher education.
-
ID Experts
ID Experts’ Data Breach Solutions offers the most comprehensive yet flexible products and services to address the unique needs of each incident. We are the largest data breach and identity protection provider to the federal government and work with all industries. Our consumer platform protects more than 40 million individuals and was built to the highest government security standards.
We know that each breach incident is unique. To most effectively respond to the impacted population, we customize our products and services for each incident, whether it is a few individuals or hundreds of millions. Our services include digital and physical notifications, call center services and breach websites customized for each incident. Depending on the severity of the incident, our protection services for the impacted population can be selected from a comprehensive list of monitoring and recovery services, including credit monitoring, dark web scanning, reimbursement insurance and fully managed identity recovery. Our concierge-style identity recovery assistance for identity theft victims with an unmatched success rate in the market.
-
Identity Force
IdentityForce is a leading provider of proactive identity, privacy and credit protection for individuals, businesses, and government agencies.
-
Identity Fraud Inc.
Identity Fraud is an insurance intermediary and cyber insurance program administrator operating nationwide. As an original pioneer of consumer identity fraud protection and cyber insurance solutions dating back to 1997, Identity Fraud now provides a variety of risk management and insurance solutions to protect individuals and businesses against identity crimes and data theft risks. Identity Fraud distributes its cyber liability insurance programs and consumer identity protection programs through channel partners, including leading insurers, brokers, banks, credit unions, payment processors, associations, employer groups, utilities and technology firms.
-
iGrant.io
LCubed AB is a SaaS provider that offers data protection services via the brand iGrant.io. iGrant.io is a personal data exchange and consent mediation platform that helps organizations unlock the value of personal data, bringing trust and transparency to the Internet.
For consumers it's a self-service privacy tool to manage their personal data in real time with an easy to use app, empowering them to exercise their privacy rights.
For businesses it provides a compliance solution with interfaces that are easily pluggable to existing IT systems. Using iGrant.io, businesses can share personal data taking consumer consents.
-
IITR Datenschutz GmbH
We offer different privacy products (as listed on www.iitr.de and www.iitr.us), starting from DPO services, e-learning, web-based privacy software for SMEs called Privacy-Kit, and a privacy management system called Compliance-Kit.
-
iliomad Health Data
Iliomad Health Data provides privacy solutions for life sciences companies. We offer compliance services for the EU General Data Protection Regulation for data protection officer and representative, U.S. Health Insurance Portability and Accountability Act, California Consumer Privacy Act, California Privacy Rights Act, AI Act, and Switzerland's Federal Act on Data Protection. We help life sciences build their privacy strategy for complex projects such data warehouses and platforms.
-
ImmuniWeb
The award-winning ImmuniWeb AI Platform helps over 1,000 customers from more than 50 countries test, secure and protect their web and mobile applications, and cloud and network infrastructure. It also helps prevent supply chain attacks and data breaches along with helping to comply with regulatory requirements.
-
Immuta
Immuta’s hyperscale data management platform provides data scientists, data owners, and data governance professionals with rapid, personalized data access to dramatically improve the creation, deployment, and auditability of machine learning and AI. The Immuta platform connects and catalogs data from any enterprise source and applies dynamic policies on that data–including masking, anonymization, differential privacy, and purpose-based restrictions–without requiring any customized code. Immuta can be deployed on premise, on the cloud, or both, enabling faster virtual connections to data, seamless policy enforcement throughout the entire data science lifecycle, and managed, granular access controls for data and machine learning models.
-
Imperva
Whether it’s personally identifiable information, payment or healthcare information, or your intellectual property, your data means money to cybercriminals. Imperva protects cloud applications, websites, web applications, critical databases, files and Big Data repositories from hackers and insider threats—ultimately protecting your data—the one thing that matters most. Imperva market-leading cyber security software products include:
- Incapsula and SecureSphere for DDoS Protection.
- Incapsula, SecureSphere and ThreatRadar for Application Security and Threat Intelligence.
- SecureSphere, Skyfence, and CounterBreach for Data Security and Breach Prevention.
-
InCountry Inc.
InCountry is a regulatory technology company that provides data residency as a service. We manage regulated data worldwide to meet local regulations and are operational in more than 50 countries.
-
Indica
Indica GDPR Module is a dedicated solution on top of our e-discovery solution tailored to help companies prepare for new regulations. It provides a comprehensive overview of the data and finds out what personal data is stored; where it is stored; and who has access to it. Indica inherits access policies, scans all the data available, correlates structured and unstructured data, recognizes privacy data attributes (CC, telephone, Social Security, IBAN, etc..), shows who has access to the data and where it is. With Indica one can create multiple dashboards for different stakeholders based on their interests and access rights.
-
Indicium LLC
Indicium offers three levels of service to small- and medium-sized businesses that either do not have a chief privacy officer or have a chief privacy officer that needs more resources: (1) Privacy 101, an introduction to national and international laws applicable to organizations dealing with individuals' information; (2) armed with introductions to organizations' most applicable laws, the Privacy Compendium answers the most frequently asked questions for U.S. and EU laws and helps organizations determine both applicability and next steps, such as seeking outside assistance and developing internal expertise; and (3) because data and privacy projects require extensive expertise, Project Consulting is available for organizations in need of ongoing guidance.
-
Infinity Security
Infinity Security offers privacy management, data governance and data security systems to help organizations meet data compliance requirements and security frameworks, discover and classify data sets, and identify and respond to data security risks.
We also collaborate with law firms to provide consulting services, including but not limited to, data compliance framework design, data security policies and processes establishment, data processing activities sort out, privacy impact assessments/data protection impact assessments, cross-border data transfers assessment and data breach response.
-
InfoComply Corp
Infocomply helps companies to achieve privacy and security compliance with their software product by:
- Implementing EU General Data Protection Regulation, California Consumer Privacy Act, Brazil's General Data Protection Law and other upcoming world's regulations successfully.
- Transforming security and privacy compliance automation to the cloud (U.S. Federal Risk and Authorization Management Program, U.S. Health Insurance Portability and Accountability Act, U.S. National Institute of Standards and Technology, Service Organization Control and International Organization for Standardization 27001).
- Operationalizing compliance and mitigating organization risk.
- Empowering consumers and protecting brand reputation.
- Changing management and privacy by design.
-
InfoCycle
InfoCycle helps organizations manage their information through its lifecycle by promoting information retention and protection principles. This could be as simple as applying retention labels to content to a complex document management migration and implementation.
-
InfoLawGroup LLP
InfoLawGroup LLP is a national boutique law firm with a laser focus on information governance, including privacy and data security matters.
Our lawyers work closely with clients on all aspects of privacy compliance, including with regard to federal, state and sometimes local regulation. Our advice is practical, and our clients count on us to find solutions to business problems. We draft consumer, employee and B2B privacy notices and disclosures, advice on consent and choice mechanisms, conduct audits, provide privacy-by-design advice for new products and services, and launch compliant marketing campaigns. We understand all aspects of the adtech industry and regularly advise publishers, advertisers, data enhancement services, technology service providers and others in the ecosystem on compliance. In addition to regularly advising on the FTC Act and related unfair and deceptive trade practice laws, we advise on specific statutes, regulations and industries.
-
Informatica Corporation
Informatica is a data management and security company with market products in all categories of data management. Informatica’s data security helps organization detect and protect by locating and analyzing risk, monitoring and protecting structured and unstructured private and sensitive data. Its solutions classify and locate PII, how it’s accessed, and develops a risk score to prioritize remediation with the orchestration of data protection; including access controls, encryption, tokenization, and masking. Informatica’s platform also monitors data flows, access and behaviors, and alerts clients to unusual or anomalous events. They provide data anonymization and protection with dynamic and persistent data masking.
-
Information Builders
The Data Management Platform provides complete administrative control of an organization’s vital data assets. The software can be implemented on sight or in the cloud and enables access to timely, accurate data across all systems, processes and stakeholders. The Omni-Gen provides technology that aligns business users and IT to define and manage their most important data domains.
-
Information First
A leading provider of information governance, file analytics and data protection services, and software solutions for government and regulated industry. Proven expertise with the EU General Data Protection Regulation, HIPAA/Privacy Act, DoD 5015.2, CFR 21 Part 11 and GxP, SOX, SEC and related compliance mandates. Services include:
- Privacy, sensitive and file analysis data assessments.
- Legacy data cleanup, ROT analysis and records auto-classification solutions.
- Records management services and staff augmentation.
- Application and system decommissioning.
- Record classification and retention schedule development and simplification.
- Email and enterprise content management software and solutions.
- Solution architecture development and design.
- OpenText Content Manager, Voltage Fusion and Structured Data Management experts.
-
Information Governance Solutions
Data protection and cybersecurity consultancy services. Specialize in data protection as a service: GDPR, POPI Act, DPA 2012 (Act843) Ghana etcetera. Training and awareness, DPIA/PIA, compliance/gap analysis, policy development tools and templates.
-
Information Integrity Solutions
IIS offers privacy consulting services that help organisations achieve their goals and build trust and stronger relationships with customers and citizens. We provide services in three key areas
- Innovation.
- Business as Usual.
- Troubleshooting.
Clients approach IIS for different information management needs. They could be reviewing existing operations or developing a new service or product and seeking to gain the edge through best privacy practice. They might have experienced a privacy incident and need help, or they may want to take proactive steps to minimise the risk of privacy incidents or crises.
IIS provides a range of services to create and enhance an organisation's value and build customer and citizen trust.
-
Ingalls Info Security
Ingalls Information Security is a Louisiana-based boutique computer security company with a mission to prevent and respond to data security breaches. We have responded to the largest data breaches in history and provide consulting services to the federal government and financial institutions, as well as to nonprofit organizations.
Our business and our passion to deliver outstanding cybersecurity risk management is fueled by the information we've gathered and the experience that these types of engagements provide. We have (in many cases, attorney-client) privileged views into the innards of the compromised networks and the cloud services of businesses and other organizations large and small. We use the knowledge we gain with this view — of what works and what doesn't, how it happened, and how to fix it — to provide our clients with the best possible risk management people, process and technologies at a price point that is affordable by anyone with a need to protect their information.
-
Insight Legal
Insight Legal is an independent software solution, developed to make the day-to-day working of law firms as effective, efficient and productive as possible. Visit the website today to learn more.
-
Integro
Integro is a specialty insurance brokerage built for the new age of global risk management. We bring together some of the world’s most experienced and knowledgeable risk and specialty insurance professionals to manage today’s global risks.
-
Intersections Inc.
Intersections Inc. provides innovative, information-based solutions that help consumers manage risks and make better-informed life decisions. Under its IDENTITY GUARD® brand and other brands, the company helps consumers monitor, manage and protect against the risks associated with their identities and personal information.
-
Intradyn
Intradyn is a unified solution provider of eDiscovery and archiving solutions for businesses of all sizes, governmental agencies and organizations of all types. Intradyn supports email archiving, social media archiving and SMS/text message archiving. As privacy and email archiving regulations rise (HIPAA, PCI DSS, GLBA, FERPA, EU GDPR, etc.), Intradyn's services continue to evolve and remain 100% compliant for federal, state and industry regulations. Intradyn’s Archiving solution is completely customizable — allowing customers to set a data retention policy by years, domains, departments or email addresses. It allows for a complete audit trail — giving customers total transparency into their compliance measures. It creates the ability to deploy a data retention policy that makes sense for every organization. Intradyn's commitment to privacy and data protection makes them a good fit for the IAPP's Privacy Vendor List.
-
IOR Analytics
IOR works with our customers across the United States and beyond to build sustainable data protection and data privacy programs. Combining the strengths of our patented platform and the deep experience of our client advisors, we help companies achieve data privacy compliance and risk management goals with cost-effective and sustainable techniques.
IOR is trusted by global and publicly traded U.S. companies. We are proudly based in Houston, Texas, while our experts are located across the U.S. ready to help you tackle your next sensitive data challenge. Please contact us for more information and discover the difference IOR can make to your ability to govern your sensitive data and comply with associated regulations.
-
IP Services, Inc.
We process legal requests for user information on behalf of clients. This includes the following:
- Review, validate, analyze and disclose responsive data pursuant to subpoenas, court orders and/or search warrants.
- Maintain positive relations and open communication with law enforcement while assisting with request submissions.
- Notify users whose data is sought by law enforcement (except where prohibited by law), while also reviewing and assessing non-disclosure orders.
- Assess and triage incoming legal requests depending on criteria, including the escalation of emergency requests and flagging of invalid legal process to expedite fulfillment.
- Review and preserve data pursuant to preservation requests from law enforcement.
-
IP.TECH-Legal
Data Protection Due Diligence Services
The enactment of the Data Protection Law started a new era for all real and legal persons which deal with data in Turkey. Therefore, compliance with the new rules are very important for a business to run smoothly. To ensure this, we have developed a data protection due diligence module where we review the data collection & processing practices of your business and provide you with a report and a list of recommended actions. Data Protection Employee Handbooks and Trainings
Understanding the data protection rules may be easy for managers or legal counsels. However, for full compliance of your business with the data protection legislation it is imperative for every employee to understand the concepts of privacy and data protection. Therefore, we draft employee handbooks specific to your organization’s needs and we also provide data protection trainings to avoid risks that may arise due to wrong handling of personal data. Daily Legal Advice in Data Protection & Privacy
We provide daily data protection advice to local and foreign companies from a range of sectors including e-commerce, retail, life sciences, banking, gaming and IT. We advise on how to legally collect, process and transfer personal data. Further we provide legal advice on transfer of personal data to foreign countries. Privacy Policies & Cookie Policies
Our team is the creator of the privacy policies and cookie policies of top local and foreign retailers and e-commerce companies in Turkey.
-
IPP Consulting
IPP Consulting focuses on helping small- and medium-sized organizations meet their obligation to operate in compliance with British Columbia's Personal Information Protection Act and any other applicable privacy laws. To protect personal and sensitive information and reduce the risks related to data breaches, IPP supports organizations with the development and implementation of a Privacy Management Program, which meets the requirements outlined in Canadian regulator guidance documents. The PMP documents program controls, identifies areas of noncompliance and gaps to address and includes an ongoing maintenance plan to ensure the organization remains in compliance.
-
iReina Software
We provide a comprehensive suite of privacy and data protection services. This includes an iReina software as a service solution for efficient privacy management and data protection officer as a Service, along with expert privacy consulting.
Our services assist organizations in automating and centralizing critical privacy documentation. This encompasses record of processing, data protection impact assessments, personal data breach management, and third-party risk management.
Additionally, we offer privacy audit and remediation roadmap automation and facilitating compliance efforts. To enhance knowledge and skills, we provide a dedicated learning and training portal, as well as a dedicated DPO portal ideal for both internal and external data protection officers.
Our solutions are tailored to simplify privacy compliance, making it more accessible and efficient for organizations while ensuring comprehensive data protection.
-
Iris
Iris’ preventative resources, data protection, monitoring technology and alerts minimize your risk of identity theft and fraud and is backed up by 24/7 access to award-winning Resolution Specialists and $1 million in identity theft insurance* to address and resolve any issues that do arise — all in one comprehensive offering.
-
IRIS Nederland
IRIS Nederland, a Canon company, offers industry-leading information management solutions and professional services to firms and enterprises throughout Europe, the Middle East and Africa.
Our technology stack encompasses solutions to securely manage content and provide governed access, control complex security policies at scale (need-to-know access), artificial intelligence–based threat detection, records management, secure communication and automated metadata cleaning. We have a proven track record of successful privacy and data protection projects as our experienced consultants ensure business requirements are met.
-
Iron Bastion
Iron Bastion are Australia's cybersecurity experts. We provide information security consulting services with specialized solutions to combat the digital threats of today.
Our information security and risk management consultants can help you achieve compliance with the OAIC Notifiable Data Breaches Scheme, Australian Privacy Principles and the ISO 27001 Framework. We can assist your business to manage data and privacy breaches when they occur.
Our staff is highly specialized in cybersecurity and data privacy. We have thirty years of combined experience with protecting clients in finance, telecommunications, retail, legal and media sectors in Australia and overseas.
-
Iron Mountain
Iron Mountain Incorporated, founded in 1951, is the global leader for storage and information management services. Iron Mountain stores and protects billions of valued assets, including critical business information, highly sensitive data, and cultural and historical artifacts. Providing solutions that include information management, digital transformation, secure storage and secure destruction, as well as data centers, cloud services and art storage and logistics, Iron Mountain helps customers lower cost and risk, comply with regulations, recover from disaster, and enable a more digital way of working.
-
Iron Shields
Iron Shields is a full-scope network security and open-source intelligence company. We provide consulting, research, engineering, and analysis, typically for Fortune 500 enterprises, government agencies, and even non-profit organizations. Our portfolio of projects is diverse and demonstrates some of our extensive capabilities.
-
Ironshore Inc.
Ironshore provides broker-sourced specialty commercial property and casualty coverages for varying risks located throughout the world. With more than 30 offices around the globe, Ironshore is prepared to meet clients’ complex needs promptly, with local service on a global basis and in-depth underwriting experience across a broad spectrum of industries.
-
ISDefence
ISDefence is a specialist consulting company based in Australia that offers information security and privacy management consulting, specifically:
- DPO as a service.
- GDPR / DPA / Privacy Act compliance reviews.
- Development of policies, procedures and processes to support compliance.
- ISO 27001 implementation/audit/training.
- General advisory services.
- Control implementation.
-
ISMS.online
ISMS.online is a cloud-based software solution that helps organisations implement, manage and improve their information security management systems. It includes the frameworks, policies and tools to meet the requirements of ISO 27001, and to prepare for and manage GDPR compliance. Other available frameworks include NIST, NCSC Cloud Security Principles, SSAE 16, Cyber Essentials, PCI:DSS, and more. ISMS.online provides one secure, ISO 27001 accredited, place where teams can manage policies and controls, risk, incidents, audits, reviews, corrective actions and improvement, plus other work processes required for effective data protection and information security management.
-
IT Governance
IT Governance is a leading global provider of IT governance, risk management and compliance solutions, with a special focus on GDPR, PCI DSS, ISO 27001 and cyber security. We offer comprehensive solutions, services and expertise to help organisation meet their GDPR compliance objectives.
- Certified GDPR training courses and staff awareness e-learning.
- GDPR documentation toolkit.
- Data flow mapping software.
- GDPR consulting services: GDPR gap analysis, data flow audits, DPIA, incident response management, policies and procedures, and compliance validation.
- DPO as a Service.
- Implementation and certification of security standards: ISO27001, PCI DSS, NIST, NIS Directive.
-
ITonlinelearning
ITonlinelearning is a digital training provider for professionals looking to enhance their IT skills. The courses they offer include options to focus on data handling, administration, and management and they also provide advice to learners who are looking to pursue related career paths.
-
iubenda S.r.l.
iubenda has been offering software-as-a-service solutions for online legal compliance since 2011. We have more than 65,000 customers in more than 100 countries. Our strength comes from our comprehensive approach to legal compliance, which is not limited to cookie management, as we provide a 360-degree compliance solution, which includes:
- Privacy and Cookie Policy Generator to create and automatically update privacy and cookie policies for multiple sites/apps in various languages thanks to a database of more than 650 clauses drafted and continuously reviewed by our international team of lawyers.
- Cookie Solution, a cookie management solution to manage the technical requirements of the cookie law, i.e., displaying a cookie notice, preemptively blocking cookies and reactivating them asynchronously once the user provides consent; with our cookie solution, you can manage consent preferences for the ePrivacy, the EU General Data Protection Regulation and California Consumer Privacy Act.
- Consent Solution to store and retrieve a GDPR-compliant proof of consent whenever a user fills in a form (e.g., a newsletter registration form) or even for cookies.
- Internal Privacy Management solution to maintain detailed records of all processing activities within an organization for example to comply with the GDPR.
- Terms and Conditions Generator to create fully customizable and professional terms to protect your business.
-
Jackson Lewis P.C.
Jackson Lewis is a law firm. Having built its reputation on providing premier workplace law representation to management, the firm has grown to include leading practices in the areas of government relations, healthcare and sports law.
Jackson Lewis’ interdisciplinary Privacy, Data and Cybersecurity Group, comprised of experienced attorneys, many of whom are Certified Information Privacy Professionals by the International Association of Privacy Professionals, stays on the edge of legal developments affecting our clients’ workplace, business and marketing risks — and opportunities — in the digital age.
-
Jackson Walker LLP
Jackson Walker’s Cybersecurity practice serves as a resource for businesses taking proactive steps to manage their cybersecurity risks and is there to walk alongside you when your company experiences a data breach, leveraging the experience garnered from years of assisting clients through the myriad of regulatory, practical and technical steps that need to be taken when a breach occurs. The consequences of information compromise present business issues that require legal planning and action to mitigate the risks to the enterprise and its owners. We encourage a proactive approach to lay the groundwork to protect legal interests, promote strong corporate governance, and reduce the potential of financial losses, legal missteps, significant litigation and other actions arising from information compromise.
-
JAW Consulting UK
JAW Consulting UK is a provider of cybersecurity, data protection and privacy consultancy and resources based in London, working as trusted advisors. We provide a range of EU GDPR compliance services with a step-by-step methodology to guide clients through the process.
As an IAPP Official Training Partner, JAW Consulting UK is also uniquely positioned to deliver both theory and practical guidance of complying with the EU GDPR. We can assist at any stage, depending on the level required for readiness assessment, through to providing ongoing outsourced DPO services.
Our consulting services include:
- EU GDPR readiness assessment.
- EU GDPR program review.
- EU GDPR data discovery.
- Data classification.
- EU GDPR framework implementation.
- EU GDPR data inventory & mapping.
- EU GDPR dpia implementation.
- EU GDPR vendor risk assessment.
- Outsourced DPO (data protection officer).
- Privacy management platform.
Our training services include:
- IAPP Certified Information Privacy Professional: CIPP/E
- IAPP Certified Information Privacy Manager: CIPM
- IAPP Certified Information Privacy Technologist: CIPT
-
Jenner & Block LLP
Jenner & Block’s Data Privacy and Cybersecurity Practice focuses on practical, end-to-end solutions, assisting companies in using their sensitive data in the most efficient, effective and compliant manner possible. The Data Privacy and Cybersecurity Practice provides holistic, prophylactic advice as programs and systems are being developed, integrating information governance with low risk privacy and security exposure. In the unfortunate event of a privacy incident, the lawyers in the Data Privacy and Cybersecurity Practice guide clients through the myriad decision points to minimize the distraction and impact of the incident.
-
Jentis
The JENTIS Data Capture Platform addresses modern data protection compliance challenges. Key features include:
1. Middleware Gatekeeper: JENTIS acts as a buffer between the browser and third-party servers, ensuring controlled data flow.
2. Pseudonymization: In alignment with EU General Data Protection Regulation, data transferred to third parties is first pseudonymized, adding an additional layer of security.
3. Synthetic User and ID Pooling: A pioneering approach where JENTIS creates synthetic users and utilizes ID pooling, capturing user data de-linking it from individual identities.
4. Hybrid Server-Side Tracking: A dual tracking system is employed to both tackle the third-party cookie phase-out and establish a secure basis for international data transfers.
5. Third-Party and CMP Integration: JENTIS is compatible with major tools like Google Analytics, Facebook, Adobe Analytics and more. Additionally, it offers seamless integration with consent management platforms like OneTrust, CookieBot, Usercentrics and others through its native connectors.
6. International Data Transfers: JENTIS offers robust supplementary measures to enable compliant third-country transfers.
7. First-party Data Utilization: With JENTIS, businesses can leverage their first-party data benefits without compromising on security or compliance due to nontransparent third-party processing.
-
JLT Specialty Limited
JLT’s cyber risk consortium is a unique collaboration of leading companies across the software, hardware, advisory, consulting and legal industries that effectively support clients around their strategic, operational, financial and people issues impacted by cyber risk. The consortium brings together content, best practices, and subject matter experts to collaborate and solve cyber risk.
We can provide bespoke cyber risk management solutions and cyber liability insurance across a variety of industries. Our team of experts will work with you to find the right multidimensional cyber risk solution to cover your business against data breach and cyberattacks.
-
John Wunderlich & Associates, Inc.
John Wunderlich is an information privacy and security expert. He has consulted globally on privacy and security. Changing regulatory environments and the increasing number of class action lawsuits related to privacy have made it clear that having a security or a privacy policy is insufficient to the task of mitigating risk. Your policies need to be operational and auditable. Because of his background in IT/Operations and Process Improvement, John brings a unique and practical perspective to organizations or individuals that are responsible for managing sensitive information. This information includes:
- Personal Health Information (PHI).
- Financial Information.
- Personally Identifiable Information (PII).
- Employee Information.
In addition to his experience and expertise in privacy, John is a leader and manager with hands-on experience in:
- IT/Operations.
- Process Improvement.
- Training and Awareness.
- Change Management.
- Communications.
-
JollyDeck
JollyDeck is an e-learning and performance management platform that is built to address the compliance needs of mid-sized businesses and large enterprises. We offer engaging off-the-shelf learning content and the software to deliver it.
Our Legal Compliance Deck is written by professional copywriters and reviewed by compliance experts. This off-the-shelf solution will increase your people's awareness, encourage positive conduct and reduce the risk of breaches in your organization. The content comes in learner-friendly formats, enriched with interactive scenarios and various media formats. Course modules can be combined with tests, references and checklists to build a unique learning experience that best suits your organization's needs. The Legal Compliance Deck can be delivered via JollyDeck or exported as a SCORM.
Delivering your compliance training in JollyDeck will reduce the complexity of your learning operations by automating day-to-day routines, providing real-time analytics and meaningful insights into the efficiency of your training. JollyDeck LMS helps you increase your people's engagement and completion rates by utilizing the power of email marketing, empowering line managers and making the learning accessible via mobile or desktop app, online and offline. All of the content is also automatically converted to audio and can be consumed as a podcast.
-
Jones Day
Jones Day's experienced and integrated global team provides clients in any business sector with seamless legal counsel on the wide array of legal issues, regulations, and litigation created by global concerns about cybersecurity, privacy, and data protection. Multinational and regional companies alike rely on us to help them comply with often inconsistent legal requirements in jurisdictions around the world.
We regularly help clients address current and emerging issues, including cybersecurity preparedness, data breach response, disputes and litigation, regulatory investigations, and cyber insurance. We also advise clients on compliance obligations and their implications in transactions, such as corporate governance and risk management, corporate transactions, and cross-border data transfers.
The depth and experience of our lawyers have allowed us to develop industry-level capabilities—such as in health care, financial services, retail, communications, and transportation—and issue-level capabilities in critical infrastructure, workplace privacy, consumer email spam and telemarketing, laws protecting children, big data, Internet of Things and Internet and e-commerce.
-
K&L Gates LLP
K&L Gates is a fully integrated global law firm with lawyers located across five continents. Our broad global platform allows us to guide clients through the legal challenges inherent in the ever-changing international landscape. The deep latticework of relationships across our offices and practices enables our clients to respond to diverse legal issues and risks through the services of one law firm with a single communication.
Our privacy, data protection and information management practice benefits from our lawyers' experience with various technologies and methodologies. We have developed unique compliance techniques and approaches, including an industry-leading process-oriented approach to information management issues that assists our clients in making choices about how to use these technologies to achieve legal compliance. These techniques have been featured in testimony we were invited to provide to the U.S. National Computer Security and Privacy Advisory Board.
-
Kalexius
Kalexius offers legal services in the area of data privacy and data protection. We support corporates by undertaking audits and delivering implementation programs to meet compliance requirements across many jurisdictions globally. Kalexius has teams of lawyers and paralegals working on both transactional and complex data privacy projects.
-
Katten Muchin Rosenman LLP
Katten Muchin Rosenman is a full-service law firm. We strive to be a firm of first choice for clients seeking sophisticated, high-value legal services nationally and globally. While Katten offers an extensive range of legal services across numerous industries, our core areas of practice include corporate, financial services, litigation, real estate, commercial finance, intellectual property and trusts and estates.
-
Kaufman Dolowich & Voluck, LLP
Beyond insurance coverage, the attorneys at KDV work with clients to develop global data protection programs that help protect their organizations against potential breaches and comply with an ever-changing body of laws and regulations. In the event that a cyber breach occurs, our legal team has extensive experience helping companies effectively manage the situation. We defend clients against high stakes data breach and privacy claims, including class actions arising from incidents involving personal information. Our lawyers are well known in the field and have handled cases on behalf of companies operating across a diverse range of technologies, from online and mobile applications to computer software, hardware and biotechnology. Regardless of the size or type of company, our objective is to resolve these matters as quickly and favorably as possible while ensuring that our clients are taking the right steps to prevent problems in the future.
-
Kavlak Law Firm
As Kavlak Law Firm Turkey, we offer compliance projects to diverse groups of clients for the Turkish Personal Data Protection Law No.6698 and EU General Data Protection Regulation. Our projects contain three phases: training the team, conducting meetings with all departments to understand data processing operation in that unit properly, and finally preparing policies regarding personal data privacy issues. In addition to compliance projects, we also offer inspection projects to clients that already completed their adaptation period.
-
Keepabl Ltd
Keepabl's cloud-based service:
- Helps you simply record personal data processed in your organization through Processing Activity Questionnaires.
- Instantly and automatically creates your Article 30 Records (controllers and processors), your Processor Register and your Transfer Register.
- Helps you evaluate your compliance against the BenchMark.
- Instantly scores the BenchMark, breaking down the score into 18 sub-topics.
- Provides a comprehensive Policy Pack (policies, procedures, templates and specimens).
- Provides your own File Library for all your privacy-related documents.
- Gives guidance and resources across the full range of GDPR and U.K. PECR topics.
-
Kegler Brown Hill & Ritter
Our team of data privacy attorneys understands the thoroughness required for proper information security, and stays current on both the business and legal requirements companies must meet and the strategies to meet them domestically and internationally. Our firm consults on legal compliance and best practices to create and enact strong privacy protection policies and manage both liability risk and customer and public relations risk so that our clients are able to continue growing and remaining confident in their information security programs. Our services consist of global compliance; global data management; incident support, response, and investigation; system analysis; privacy documents; subscription/service agreements/SLAs and partner ecosystems development.
-
Keller and Heckman LLP
Keller and Heckman is on the cutting-edge of today's most exciting ways to communicate and do business: the internet and mobile media. Our regulatory and business expertise enables us to assist clients in promoting their brands and generating revenues using digital media, as well as advocating a sensible legal framework governing privacy, data security and digital commerce to policymakers around the world.
-
Kelley Drye & Warren, LLP
Our Privacy and Information Security attorneys work at the leading edge of privacy and data security law, guiding companies through dozens of regulatory inquiries and investigations, enforcement actions and litigation brought each year by the Federal Trade Commission, the Federal Communications Commission, the Consumer Financial Protection Bureau and state attorneys general. Our class action attorneys are known for their integrity while protecting a company’s brand and reputation regarding lawsuits involving consumer protection and data privacy.
-
Kilpatrick Townsend Stockton LLP
Kilpatrick Townsend helps its clients protect their most important information. Our Cybersecurity, Privacy & Data Governance practice takes a comprehensive, multidisciplinary and integrated approach to help clients:
-Anticipate, obviate, and manage the full range of information-related risks.
-Optimize the value of information and appropriately monetize it.
-Comply with evermore complex privacy, data protection and cybersecurity regulatory frameworks around the world.
-Contain and respond quickly and effectively to incidents.
-Prevent and control disputes and investigations.
-Maximize recoveries and resilience.
-
King & Spalding LLP
King & Spalding’s Data, Privacy and Security team counsels clients on a broad range of legal issues faced by multinational organizations, including global privacy programs, data protection and cybersecurity assessments, crisis management in responding to internal and external privacy and data security incidents, health information governance and compliance, and defending clients in regulatory enforcement proceedings and class action litigation. The team consists of “boots on the ground” crisis managers, technical professionals, former government lawyers and litigators to manage and coordinate fast-moving and complex investigations and logistics during and after an incident. We assist clients with preparing for, responding to, and recovering from data privacy and security incidents.
-
Kinstellar
Kinstellar is Emerging Europe and Central Asia’s leading independent law firm navigating its clients through cybersecurity and data protection challenges, both on local and global scale. We have a well-established track record providing innovative solutions, and we bring expert knowledge of local markets and respective regulatory environments coupled with extensive international experience.
Our services include:
• Assistance with risk assessments, handling data subject requests.
• Contract negotiations with controllers/processors (e.g., data processing agreements).
• Regulatory and compliance (e.g., audits, inspections by authorities).
• Specialist privacy and cybersecurity advice (e.g., health care, outsourcing, blockchain, fintech, binding corporate rules).
-
Kirke Management Consulting
- Strategy and governance.
- Policy management.
- Data lifecycle management.
- Privacy by design.
- Privacy incident management.
- Data controller/processor accountability.
- Third-party vendors.
- Training and awareness.
- DPO on-demand.
- Privacy program implementation.
- GDPR readiness assessment.
-
Kirkland & Ellis LLP
Our Data Security & Privacy Practice Group focuses on the evolving business, technological and legal issues relating to the security and privacy of networks and data. We represent clients in investigations, crisis response to data breach incidents, litigation, government relations, counseling and transactions.
-
Kivu Consulting
Kivu offers services in computer forensics, cyber security, data breach response and cyber extortion.
-
KPMG LLP
As organizations seek to improve the consumer experience, and secure the competitive advantage associated with brand trust, it is crucial they leverage consumer personal information assets in the most appropriate way.
We have deep experience of supporting organizations, helping them to address their privacy challenges. KPMG member firm specialists can adopt a structured and flexible approach to meet the needs of your business. Areas where KPMG professionals can add value, include:
Assessments
Provide an independent assessment of current risk profile and how this compares to desired state.Design
Work with you to design a Privacy Compliance Program to meet requirements of legislations.Strategy
Work with you to develop a pragmatic privacy strategy and gain buy-in from senior management.Implementation
Support the implementation of robust and sustainable processes, policies and controls to allow you to mitigate your privacy risk.Technology Enablement
Supporting you on your Privacy technology journey from leveraging your own technology, vendor selection through to how KPMG can support you with our proprietary privacy technologies.Operations
Provide ongoing support and advice to assist you in operating your control environment.Monitoring
Support you in maintaining your privacy control environment.
-
Kramer Levin Naftalis & Frankel
Kramer Levin’s Cybersecurity, Privacy and Data Protection group is an interdisciplinary team of lawyers from the United States and Europe with extensive litigation, regulatory, technology and compliance experience. We represent clients ranging from startups to multinational Fortune 100 companies to corporate executives and boards of directors and provide proactive, comprehensive advice on the most cutting-edge data management, security valuation and technology issues as digital law becomes more and more global, transcending the cybersecurity and privacy laws of any single nation.
-
Kroll
As a leading global provider of risk solutions, Kroll helps clients anticipate, detect, mitigate and respond to risk. For more than 45 years, Kroll has helped clients make confident risk management decisions about people, assets, operations and security through a wide range of investigations, cybersecurity, due diligence, and compliance, physical, and operational security and data and information management services. Kroll handles more than 1000 cyber incidents every year, with engagements involving over 70% of the Fortune 100. Our experts handle some of the most complex and highest profile matters in the world, delivering timely and seamless services for information security and data privacy needs that range from proactive threat assessments, data security, and intrusion prevention to cyber investigations, incident response, breach notification and consumer remediation.
-
Kuma
Kuma has over 20 years of experience working with clients across the globe to develop strategies and implement technologies for complex, high profile initiatives.
- Risk assessment.
- Training and awareness.
- DPO services.
- DPIAs.
- Legal support.
-
Kutak Rock LLP
In today’s digital world, privacy and data security are among the most challenging issues facing nearly every business and organization. Kutak Rock’s cross-disciplinary team helps clients proactively manage these issues to mitigate risk without sacrificing operational goals.
Our experienced team works with clients across industries and across the country to:
-Create effective privacy and data security programs and policies.
-Identify and resolve federal, state and international regulatory compliance issues across a wide range of industries (GLBA, HIPAA, FERPA, TCPA, CPNI, CCPA, GDPR and others).
-Implement comprehensive vendor management programs.
-Address privacy and data security matters in mergers, acquisitions and other transactions.
-Prepare for, assess and respond to data breaches.
-Understand cyber insurance.
-Litigate claims.
-Monitor and influence new legislation and regulations.
Our broad knowledge and deep bench enable us not only to address our clients’ immediate needs, but also to spot and mitigate issues not yet on their radar.
-
LAB 245 SOFTWARE
Our products are:
-Document privacy management.
-Audit management of process.
-Data security management.
-Digital and electronic signing of documents.Our services are:
-Document management consulting focusing in privacy.
-Process management design for security purpose.
-
Labor Project srl
For more than 15 years, we have been offering companies and public administrations a high-level, all-embracing and modern assistance service in privacy and data protection compliance projects. With a pool of UNI 11697 certified professionals, consultants, data protection officers, lawyers and ISO 27001 Internal Auditors, the company offers consultancy in privacy law and EU General Data Protection Regulation application.
Together with our customers, we develop a compliance plan that can be customized depending on needs, size and business sector. This plan includes a series of services attending the data controller to achieve and maintain compliance with current legislation over time.
We provide assistance in the ordinary and extraordinary management of privacy obligations: identification of compliance status, audits, risk and impact assessments, implementation of technical and organizational measures, regulatory compliance, definition of roles and responsibilities, appointment of DPOs, managers or persons in charge of processing, forms and documents drafting, information flows, records, privacy information, revision and contracts’ amendments, policies and procedures, non-EU data transfer, employee control, IT governance, audits and continuous monitoring, staff training, data breach management and reports to data protection authorities.
We deploy a management software capable of analyzing the jurisdiction and the privacy legislation, adapting and maintaining the privacy framework.
-
Lacher & Associates
The mission of Lacher is to crush insurance complexity. We know that unnecessary complexity kills even the best-intentioned ideas. We know that strategies are becoming so complicated that they can’t be clearly explained or easily executed. And we know that insurance and employee benefits are no exception. Simple doesn't mean easy. It takes experience and knowledge to crush complexity. In fact, it's the hardest part. Welcome to SIMPLE.
-
Lakeside Consulting Group
Lakeside Consulting Group is a data privacy and information security consulting firm with seasoned experts focused on providing premier privacy and security staffing. We help companies in all industries identify their obligations, assess risk, build capabilities to comply and operationalize solutions. Specific examples of capabilities include conducting data protection and privacy impact assessments, building global policies and procedures, completing data inventories, performing Privacy by Design, notice and consent management solutions, cross-border data transfers, data strategies, data ethics and incident management. We have deep expertise in the EU General Data Protection Regulation, California Consumer Privacy Act, Virginia's Consumer Data Protection Act, the U.S. Health Insurance Portability and Accountability Act and many other laws and regulations.
-
Lane Powell LLP
Our Privacy and Data Security Team provides clients with comprehensive counseling on all aspects of data privacy and protection. From preliminary risk assessment of data security to representation in civil lawsuits, we offer experienced and technologically savvy attorneys who counsel clients on how to effectively and efficiently minimize legal and reputational risk arising out of collection, use, storage and loss of sensitive data, including personally identifiable information, customer financial data, confidential business data and trade secrets.
-
Lastline
Lastline® delivers the industry’s most accurate AI-powered network security. Informed by years of threat research and attack investigation, our products provide high fidelity insights into advanced threats entering or operating inside your network.
-
Latham & Watkins, LLP
Latham & Watkins' data privacy and security practitioners not only advise on compliance and best practices for data management and incident preparedness, but also excel at the just-in-time, experience-based legal advice that is needed in the immediate aftermath of cyber incidents.
Latham’s data privacy and security practitioners defend government investigations and other privacy proceedings, provide compliance advice focusing on cross-border and novel matters and issues, and advise on the privacy and data security aspects of multi-billion-dollar transactions and investments. The hallmark of Latham’s Information Data Privacy & Security Practice is the ability to deliver rapid global response capabilities on data protection or cybersecurity issues and develop innovative structures, processes and arguments to enable global organizations to comply with an increasingly complex (and often conflicting) global regulatory environment.
-
Lathrop & Gage LLP
Lathrop Gage has a tradition of excellence in this evolving area of the law and routinely guides clients through the high-paced investigation, notification and response involved in a data breach or loss. Once these immediate obligations are resolved, we help our clients face any ongoing regulatory scrutiny and seize upon opportunities for improvement.
With an eye toward prevention, our multidisciplinary team of attorneys and data specialists can assess regulatory requirements, identify risk and develop strategies to protect personally identifiable information, personal health information and proprietary data. In addition, our insurance lawyers in the practice group can assist in considering appropriate cyberinsurance coverage.
-
Latitude
Latitude is a full-service flexible legal talent company serving corporate legal departments and law firms nationwide. From Fortune Global 100 companies to startups and Global 50 law firms to boutiques, clients turn to us for top-tier attorneys and other legal professionals.
Latitude specializes in providing highly skilled former in-house counsel and Big Law attorneys for flexible contract engagements and permanent positions in dozens of practice areas, including data privacy and cybersecurity.
Founded in 2013, Latitude has been recognized by Chambers as a leading global flexible legal staffing company and by readers of The National Law Journal as the No. 1 Legal Recruiter in the U.S.
-
Lavery, De Billy LLP
At Lavery, we were the first major law firm to anticipate, almost 30 years ago, the cardinal importance that information was acquiring in our society. Whether it involves the right of access to governmental information, the protection of personal information, cross-border data flow, the use of information technology, respect of privacy, reputation and personal image or the right to be forgotten, our seasoned lawyers in the information and privacy sector offer you a comprehensive perspective thanks to the depth and breadth of their expertise and the broad range of services they have to offer.
-
Law Offices of William D. Black
The Law Offices of William D. Black have successfully represented thousands of clients in a wide variety of cases involving business disputes, personal injury accident claims, medical malpractice claims, employment law issues, real estate disagreements, and probate and trust claims. These claims have ranged from straight-forward single defendant law suits to more complex legal matters, often involving multi-party litigation.
-
Law4IT.com
LAW4IT.COM provides consulting services in the areas of fundraising for organizations and executive security and privacy consultations for organizations.
-
lawpilots
Lawpilots is Europe's leading provider for legal and regulatory e-learning courses in the areas of data protection, compliance, ESG, cybersecurity, and occupational health and safety. The company was founded by lawyers with the aim of conveying legal learning content in an easy-to-understand and practical way. Today, lawpilots offers more than 45 e-learning courses in over 35 language and country versions, and has successfully trained more than 3 million employees worldwide.
-
Lawtons Solicitors
Lawtons is a criminal defense solicitors firm, with extensive expertise in handling cases involving EU General Data Protection Regulation compliance and data protection. If you are accused of having violated any laws relating to the misuse of data, then Lawtons can defend you or your business against any claims of misconduct or negligence.
-
LegalWorks
In the digital era, data protection and privacy has become a major challenge for all organisations, in particular if you act on a global scale. With the stricter legislation coming into force in Europe, it is now time to take action. Our PrivacyWorks Team with privacy and information security experts can analyze the current state of your systems and policies and can help you to fill the gaps by leading your projects and conducting the necessary trainings and workshops.
-
Leo RegTech
Leo offers compliance infrastructure software providing tools for easy maintenance of the U.K. and EU General Data Protection Regulation accountability framework. Our tools support compliance and legal functions, bringing inhouse what an outsourced data protection office does. We also offer U.K. and EU Article 27 GDPR service through our London and Paris offices.
-
Lewis Silkin LLP
From compliance and risk management advice to monetisation of data - our advice is not just multi-disciplinary, it is multi-faceted.
Commercial Data
Multidisciplinary practitioners provide privacy advice in the context of other areas of applicable law such as intellectual property law, consumer regulation and advertising and marketing regulation.Data Audit Services
We tailor the scope of the audit to meet your requirements.Data & Privacy Training
We provide training for sales and marketing managers, HR managers, IT and finance professionals as well as in-house lawyers.LSPrivacyDesk
Our LSPrivacyDesk service provides initial responses to day-to-day queries as well as giving an initial, confidential view on more complex issues.LS Response
LS Response is an end to end solution to guide you through a privacy or cyber security incident.Privacy & Reputation Management
We have all the skills to help manage your reputation, including advising on related criminal matters, such as offenses under computer misuse, data protection and communications legislation, harassment and blackmail, as well as prosecutions.Workplace Data Privacy
Expertise in handling the full range of workplace data privacy questions.
-
Lewis Thomason
While focused primarily in the Southeast, Lewis Thomason also serves clients nationally from its three offices.
The firm advises clients in numerous industries on information privacy and cybersecurity, including incident investigation and breach response management, regulatory compliance, privacy and security policy review and drafting, and cyber risk management. In the area of health care, the firm counsels covered entities and business associates on a variety of matters pertaining to Health Insurance Portability and Accountability Act Privacy Rule, Security Rule, and Breach Notification Rule compliance.
Our cybersecurity team has the assistance of other attorneys in the firm who are experienced in various industries, including health care and HIPAA laws, finance, education and nonprofit. We assist clients in navigating the complex layers of federal, state and international law, including data breach notification and privacy protection acts and accompanying regulations. We offer a wide range of cybersecurity advisory services and take a multidisciplinary approach to effectively manage a breach response, as well as mitigate losses resulting from a security incident.
-
Lex Dinamica
Lex Dinamica is a data privacy consulting firm offering tailored advisory, privacy technology and data protection officer solutions. We partner with industry leaders to address their privacy challenges, building trusted privacy driven organizations. Our services are designed to help clients adapt to changing regulatory and business needs, and include:
Data privacy consulting and advisory: We provide end-to-end data privacy services, including audits and assessment, strategy and governance, data mapping, cookie compliance, global data transfers, policy development, and training, ensuring comprehensive coverage of your privacy journey.
Privacy technology solutions: We implement and integrate privacy technology platforms, advising clients on strategic fit-for-purpose tech investments that meet their specific privacy needs.
OneTrust managed services: Our certified OneTrust specialists offer implementation and optimization of OneTrust's Privacy, governance, risk and compliance, and ethics modules, along with ongoing support through fractional managed services.
DPO as a service: We provide global data protection officer services, ensuring compliance with privacy laws and acting as an independent liaison with regulatory bodies.
Data privacy recruitment and headhunting: We connect organizations with top talent for data protection roles globally, leveraging our extensive network and expertise.
Regulatory monitoring: Our data privacy horizon service keeps clients informed of regulatory changes worldwide, offering timely updates and actionable insights.
-
Lexing Spain
We provide ongoing assistance in adapting and monitoring compliance with the Spanish Data Protection Act, and implement regulations on the processing of personal data carried out by online and offline businesses, either as data controller or data processor.
-
Liberty Mutual Insurance
Flexible cyber coverages on commercial package products and monoline general liability policies for small to mid-sized businesses.
Data Compromise Response Expense
- First-party coverage for expenses resulting from a data breach, including customer notification, legal review, forensic IT review, public relations services, and credit monitoring services. Coverage also extends to regulatory and payment card industry fines and penalties where insurable by law.
Data Compromise Defense and Liability
- Third-party liability and legal defense of a suit brought as a result of a breach of personal information.
Attack and Extortion
- First-party coverage for expenses associated with repairing, re-creating and restoring data and systems to their states prior to a breach. Extortion covers the cost to hire a negotiator or the amount a business may have paid in response to an extortion threat to launch a denial of service attack.
Network Security Liability
- Third-party liability and defense for losses resulting from a breach of confidential business data owned by a third party. The coverage also extends to the unintentional forwarding of malware to others.
-
LifeLock
LifeLock is identity theft protection through Norton Security. LifeLock looks for use of your personal information, and with proprietary technology, alerts you to a wide range of potential threats to your identity. They also monitor up to five of your devices for identity threats and will help with the restoration of your identity or compromised device.
-
LightBeam.ai
A leader in the data security and privacy automation category, LightBeam has rapidly gained customers' trust by pioneering a unique identity-centric and automation-first approach to privacy management. Unlike siloed solutions, LightBeam ties together cataloging, control and compliance across structured and unstructured data applications providing 360-visibility to sensitive data, masking, redaction, archival, and deletion of sensitive information, helping to ensure ultimate protection against both accidental exposures and malicious ransomware attacks.
LightBeam is on a mission to create a secure privacy-first world helping customers automate compliance against a patchwork of existing and emerging regulations.
-
Linklaters LLP
Delivering excellent client service and using our global capabilities to help them pursue the right opportunities means they benefit from long and lasting relationships.
To put clients at the heart of all we do, we recruit and develop exceptional people empowering them to do and think differently. We serve our clients as a team, with a common focus on innovation, efficiency and agility.
-
Lionheart Squared (Europe) Ltd.
Lionheart Squared is a full data protection services company based in the EU.
We specialize in GDPR Article 27 EU representative services for non-EU companies that are providing goods and services to individuals or monitoring their behavior in the EU.
In addition to the fulfillment of all Article 27 tasks, Lionheart Squared provides:
• EU reps with CIPP/E or equivalent qualifications.
• Enhanced relations with EU regulators and data subjects.
• Localized communication packs reflecting client branding.
• IAPP Corporate Member discounts."Linking you to the EU" — contact us at Info@lionheartsquared.eu.
-
Lionheart Squared Ltd
Lionheart Squared Ltd (UK) provides full data protection services.
We specialise in UK GDPR Art. 27 Representative services for companies not located in the UK that provide goods and services or monitor the behaviour of individuals based in the UK.
In addition to fulfilling all GDPR Art. 27 tasks, we provide:
- UK Reps with IAPP qualifications
- Enhanced relations with UK regulators and data subjects
- Localised communication packs reflecting client branding
- Coordination with EU and other country Representative services
- IAPP Corporate Member discounts
Please contact us at info@lionheartsquared.com
-
Littler LLP
At Littler, our unparalleled commitment to labor and employment law helps our clients navigate a complex business world with nuanced legal issues — building better solutions for their toughest challenges.
Workplace privacy has become a growing concern for employers as new technologies enter the workplace and legislation and case law in the area becomes more complex. In an era of advanced background checks, instant transfers of sensitive personnel information and pervasive social media activity by employees, Littler advises a wide range of businesses on successfully navigating the intersection of privacy, data protection and a technology-driven workplace.
-
Locke Lord LLP
Locke Lord’s Privacy & Cybersecurity Practice Group consists of more than 30 lawyers in 13 offices across the United States and in London. With a range of backgrounds in insurance, finance, retail, health care, energy, intellectual property and litigation (among others), our group provides advice that takes into account the standards and practices of the industries and legal frameworks in which our clients operate, as well as laws and regulations of countries on a worldwide basis. With a history of rankings by various institutions, our privacy and cybersecurity practice and individual lawyers have been recognized as leaders in the field by both Legal 500 and Chambers USA. We are also listed as one of the leading cybersecurity law firms in the most recent “BTI Law Firms Best at Cybersecurity” report, a list derived from in-depth interviews with corporate counsel. We are members of the International Association of Privacy Professionals and several of the members of our Privacy & Cybersecurity Practice Group are IAPP Certified Information Privacy Professionals.
-
LockPath
Lockpath® was created by GRC experts who recognized the need for intuitive GRC software that was flexible and scalable to serve ever-changing and expanding organizations.
In addition to the company’s founders, Lockpath’s executive team comprises top industry professionals in the fields of software development, accounting and consulting, cybersecurity, financial services, market development and other industries. Lockpath employs dozens of talented professionals and has several open positions.
-
Lockton Companies
Lockton provide clients around the world with risk management, insurance and employee benefits consulting services that improve their businesses.
Cybersecurity isn’t owned by IT alone anymore. It is an enterprise-wide challenge, and solving it starts in the boardroom. As your trusted adviser, Lockton understands this shift and will help you address the cybersecurity challenge.
-
Loeb & Loeb LLP
Loeb & Loeb’s global Privacy, Security and Data Innovations team helps many of the world’s most recognized brands harness the power of data across new communication platforms, using innovative new technologies and through data-driven business models and transactions.
Our team is at the forefront of legal developments in the U.S., Europe and around the world, working with policymakers, advocacy groups and industry associations to navigate developments in the legal landscape. We help our clients anticipate risks, meet challenges, and implement sound privacy and data security principles to address these evolving and often overlapping government and industry regulatory schemes.
-
LOGbinder
To achieve compliance and stop APTs, your security analysts need to see what’s happening in your applications. Think about it. Most organizations have a SIEM or other security analytics solution that monitors network and operating system activity. If you need to know what’s happening on your network and at the OS layer of your servers , you definitely need to know what’s happening in your applications. After all, that’s where your information actually resides and where most security incidents occur, at the application level, whether the actor is a malicious insider or an APT outsider.
The answer is to put application audit logs where audit logs belong — in your SIEM and/or Big Data Security Analytics. Then, application security intelligence can be correlated with the rest of your security activity. But getting application audit logs into your SIEM/BDSA is surprisingly difficult. Application audit logs tend to be trapped inside the application where they take up valuable application server resources and are vulnerable to tampering.
LOGbinder makes it easy by bridging the gap between applications and your security analytics solutions (SIEM, log management, BDSA).
-
Lokker
LOKKER scans websites, identifies third-party trackers, blocks unauthorized requests, and enables real-time monitoring and control over third-party Javascript threats in the browser.
LOKKER protects visitors in every web session and allowing website owners to:
• Control what comes in: Block unwanted third-party code and reduce risks without affecting user experience.
• Protect what goes out: Protect your customers’ personally identifiable information and protected health information.
• Set geo controls: Limit where customer data goes by geography.
• Enforce company privacy notice: Report on which cookies, trackers and pixels load in the browser to stay in sync with your privacy notice.LOKKER is a simple, no-code implementation that is easy to install and won’t disrupt user experience.
-
Loricca
Since 2004, Loricca, a Service Disabled Veteran Owned Business, has developed expertise in Healthcare, Financial Services, Insurance, Energy, Communications, Government, and Commercial enterprises. Loricca’s leadership team of seasoned industry experts apply knowledge, flexibility, and responsiveness to each client’s information security and regulatory compliance needs.
-
Lowenstein Sandler LLP
Our privacy & cybersecurity team helps clients navigate the rapidly evolving, increasingly complex privacy and security law landscape in the United States, the EU, and around the world. Our cross-disciplinary practice draws on the extensive knowledge and experience of lawyers in our employment, employee benefits, insurance, bankruptcy, intellectual property, and litigation practices. Our targeted counsel is relevant to companies across diverse industries, such as health care, retail, professional services, communications, financial services, advertising and entertainment.
Our deep knowledge, combined with our transactional experience, provides our clients with exceptionally effective counsel. Our team is equally well versed in FTC regulations and investigations, data breach preparation, response and remediation, and the defense of class action litigation resulting from information security and privacy law violations.
Today, U.S. companies must carefully consider privacy and data security laws when conducting business with entities and individuals located in foreign jurisdictions. We routinely counsel clients on their responsibilities when their business operations extend beyond U.S. borders, including compliance with the EU's new General Data Protection Regulation.
-
LS Legal
LS Legal can offer a tailored team to support organizations, on demand, on their way to data protection compliance, including providing an experienced privacy specialist to act as an external DPO. We are also experienced in providing legal assistance on highly specialized data protection aspects such as cloud computing, data breaches, behavioral advertising, data retention, international transfer of personal data, privacy impact assessments and more.
-
Lucid Privacy Group
The Lucid Privacy Group is a consultancy dedicated to providing practical privacy advice and solutions to global enterprises. Our global team of experts includes a diverse range of technical, policy, business and legal backgrounds, with a strong emphasis on marketing technologies and artificial intelligence. Our service packages are designed to provide strategic guidance to data driven organizations, augment privacy operations, and fulfill obligations of data protection officers.
-
Lunarline, Inc.
Lunarline Privacy Professional Services include a robust range of professional and technical services to assist you in protecting personally identifiable information (PII) or Personal Data; protected health information (PHI); electronic health records (EHR); protected financial information; sensitive or special categories of data; and intellectual property (IP).
-
M-Files
M-Files is a highly-scalable and flexible information management solution that enables organizations to better manage regulatory requirements for processing personal data and PII and document compliance. With M-Files, organizations can easily implement and enforce policies and processes associated with handling personal information, and by controlling and tracking such information, including that handled by third-party "data processors."
With powerful audit and reporting capabilities, M-Files allows companies to quickly and easily produce the documentation and other information necessary in the event of a breach or auditor's request.
M-Files can assist companies in meeting GDPR requirements by providing a compliance layer over existing systems where personal data resides or is processed. This gives effective way to manage data requests even when the volume of requests gets high or the effort is demanding due to complexity and size of an organisation.
For GDPR and other compliance management requirement, M-Files has several unique, patented features that have proven their value, and as a full-flag enterprise content management technology, we can build on our earlier experience and capabilities from providing compliance management solutions for highly regulated businesses.
The M-Files approach to GDPR is based on starting in a limited, focused manner, then expanding gradually to additional use cases and other units. With M-Files it is very easy to apply unit or country specific requirements and adapt to a customer or unit's own needs and requirements while providing an effective compliance platform for the whole organisation.
-
Major, Lindsey & Africa
Established in 1982, Major, Lindsey & Africa is committed to meeting the ever-evolving legal search needs of law firms and corporate legal departments. To truly understand the career aspirations of those in the legal field – as well as the needs of the firms and companies that hire them – a recruiter must have experience, focus and in-depth market knowledge of the legal profession. By being committed specialists, our information systems, networks, search and qualification processes – everything we do – is aligned with the legal profession. We know more people in the profession and we know them better than anyone else in the industry. This knowledge has helped us to expand our recruiting service offerings to bring more comprehensive legal recruiting solutions to both law firms and corporate clients. Our deep understanding of our clients' ever-evolving staffing and recruiting needs has led us to launch successful practices in law firm management recruiting (non-legal positions at law firms) as well as the Solutions Practice Group, which focuses on the entire realm of legal human capital and staffing solutions for companies and law firms. Trends in client needs have also led us to open successful legal recruiting practices in London and Asia, servicing the EMEA and Asia Pacific regions, respectively.
-
Manatt, Phelps & Phillips LLP
Data increasingly powers the economy in our borderless digital world. We keep you on track as technology and privacy regulations evolve and vigorously defend you if the need arises. Privacy and data security are fundamental to maintaining competitive advantage and managing your company's risk.
An increasingly valuable asset for every company, data has to be handled sensitively. And as technology and the law evolve, we all have to continuously keep up with data compliance regulations — particularly if you're a global business working across territories with varying regulations.
-
Manetu, Inc.
In the United States, Australia, the European Union, United Kingdom, France, Germany and the rest of the world, Manetu's Consumer Privacy Manager provides cloud-based consent management, personally identifiable information data discovery and a "regulatory vault" for PII. Its suite of cloud-based tools facilitate compliance with new and emerging data-privacy regulations.
-
Marashlian & Donahue, PLLC
M&D’s privacy professionals help clients implement best practices in information privacy and data security. We are aware of the potential for domestic and international enforcement actions for failure to protect consumer information. We have advised clients dealing with security breach and unauthorized disclosures of personal information, including state breach notification requirements. To ensure adequate protections, companies must work directly with vendors, employees, independent contractors and customers to obtain, use, secure and protect internal and external customer data. We also recognize the need to address legal and reputational risks while preserving an organization’s ability to use information in ways that achieve organizational goals. We work with clients to develop privacy practices that support business success.
-
Markel Insurance Company, Inc.
Markel Specialty, one of Markel Corporation’s four insurance divisions, underwrites innovative property and casualty solutions for both standard and hard-to-place risks. Success in specialty insurance is about knowing your markets. With more than 70 years of experience in our niche markets, our product focus is on commercial programs and personal lines offering admitted and excess and surplus lines solutions. Distribution channels include retail agents, agents specializing in particular product lines, program administrators/MGAs/MGUs and direct to consumer.
-
MarkLogic
Only MarkLogic provides a unique multi-model operational and transactional database that automates the discovery of personal data from all data sources. We empower organizations to meet EU GDPR imperatives, including secure storage and appropriate usage of EU citizens’ personal data. By leveraging multi-lingual full-text search, you can manage the data over time with the right security controls, providing quick responses to EU citizens. The result is better data governance as well as the flexibility needed for continually evolving regulatory rules.
-
Mayer Brown LLP
Mayer Brown is a distinctively global law firm, uniquely positioned to advise the world’s leading companies and financial institutions on their most complex deals and disputes.
With our global platform and our experienced and practical team of cybersecurity and data privacy lawyers, our firm can serve clients across a full range of domestic, international and cross-border privacy issues. The cybersecurity landscape is evolving more rapidly than ever before, and the threats to businesses’ critical information and assets — as well as to their bottom lines — are only increasing. Breaches continue to grow in scale and sophistication, regulators are crowding the field with an expanding and shifting array of requirements and de facto standards, and litigation remains perilous. Now, more than ever, businesses must think strategically about the cyber threats they face — whether to consumer or employee information, intellectual property or product safety — and take practical steps to address the associated legal, business and reputational risks.
-
Mazars
The GDPR will come fully into force on May 25, 2018. Mazars has supported many organizations in attaining GDPR compliance. We will continue to provide support to our clients in refining and maintaining compliance as the regulatory and legal environment matures.
-
McAfee
As a leading-edge cybersecurity company, McAfee provides advanced security solutions to consumers, small and large businesses, enterprises, and governments. Security technologies from McAfee use a unique, predictive capability that is powered by McAfee Global Threat Intelligence, which enables home users and businesses to stay one step ahead of the next wave of fileless attacks, viruses, malware and other online threats.
-
McCarter & English LLP
Marshaling the resources of our transactional, regulatory and litigation practices, including intellectual property/information technology, corporate, securities and financial institutions, health care, insurance coverage, government investigations and white collar criminal defense, government contracts and export controls, and labor and employment, McCarter provides comprehensive privacy compliance and data security risk management services to clients worldwide.
-
McCarthy Tetrault LLP
McCarthy Tétrault is a Canadian law firm that offers a full suite of legal and business solutions to clients in Canada and around the world. We deliver integrated business, litigation, tax, real property, and labour and employment solutions.
The internet of things, artificial intelligence and semi-autonomous vehicles are just a few of the technologies transforming the marketplace. Because the collection, use, storage, processing and disclosure of data transcends practice lines, our Cybersecurity, Privacy and Data Management Group takes a connected approach. Combining extensive experience in data protection with deep industry insight into the practical commercial realities of technology transformation, we guard your reputation, mitigate risk — and when necessary — control damage.
-
McCormick, Barstow, Sheppard, Wayte & Carruth LLP
Privacy has become an overriding compliance concern for businesses, nonprofits and governments. Our attorneys advise our clients on navigating the complex web of state, local and international privacy law requirements.
Contemporary privacy law requires organizations that hold even their own employees’ personal information to take steps to protect it from exposure to cybercriminals and mistakes. Should a loss of personal information occur, our attorneys can advise you on your organization’s data breach obligations and take steps to minimize your organization’s potential liability.
-
McDermott Will & Emery LLP
McDermott’s world-class Global Privacy and Cybersecurity team includes more than 50 privacy and cybersecurity lawyers advising clients on the statutory, regulatory and enforcement regimes that govern the collection, use and disclosure of data in the United States, Europe, Asia and elsewhere.
We have extensive experience advising on the full range of data privacy and protection laws, industry standards and issues. Our lawyers regularly counsel clients on US and international data-use issues, data transfers, and privacy compliance under US and foreign laws. We conduct in-depth privacy/cybersecurity risk assessments, often in the context of mergers, acquisitions and other domestic and cross-border transactions.
In the event of data breaches or alleged improper use of data, we provide swift, effective cybersecurity incident response and represent clients in litigation and government investigations. Our practice includes lawyers with deep experience in health care data privacy and related litigation.
-
McGuireWoods LLP
McGuireWoods is a full-service firm providing legal and public affairs solutions to corporate, individual and nonprofit clients worldwide for more than 200 years collectively. Our commitment to excellence in everything we do gives our clients a competitive edge in everything they do.
McGuireWoods’ data privacy and security team helps clients understand their risks, then works with them to prioritize their investments, resources and efforts to mitigate those risks.
-
McMillan LLP
McMillan is a leading business law firm serving public, private and not-for-profit clients across key industries in Canada, the United States and internationally.
Privacy and data protection are interrelated concepts that involve complex statutory, regulatory and common law requirements and restrictions. Privacy and data breaches — whether accidental or intentional — are frequent front-page news stories that damage corporate reputations and have led to an increasing number of class-action lawsuits.
-
MEGA International
MEGA International is a global software firm developing Governance Risk and Compliance solutions for more than 15 years. HOPEX GDPR provides a collaborative workspace for DPOs and cross-functional stakeholders to manage a GDPR compliance initiative. Our solution gives you the right tools to understand how your organization complies with GDPR, to implement the needed changes and automatically produce documents required by the regulator. The methodology has been developed with Gruppo IMPERIALI, who brings more than 30 years of Data Protection legal expertise. HOPEX GDPR integrates up-to-date regulatory details and legal templates to accelerate your remediation plans.
-
Messageware
Messageware has been a trusted Microsoft Gold Certified Partner and a Global Exchange ISV for more than 15 years. Our Outlook Web Access enhancements and security solutions are used by organizations throughout the world to secure, enhance and customize Outlook Web App/Access.
-
MetaCompliance
MetaCompliance offers a onestop-shop Privacy Management solution specifically designed to provide organizations with step-by-step guidance in preparing for, and operating in compliance with, the General Data Protection Regulation The solution resides within the MyCompliance Cloud platform which provides customers with a fully integrated suite of GDPR capabilities which includes processing activity assessments, risk management, task management, policy management, incident management and eLearning. The platform also offers management dashboards and detailed reporting allowing data protection officers to easily track implementation progress and demonstrate ongoing accountability
-
MetLife
MetLife is one of the largest life insurance companies in the world. Founded in 1868, MetLife is a global provider of life insurance, annuities, employee benefits and asset management.
-
MetricStream
MetricStream provides a complete portfolio of Enterprise GRC Solutions that enable you to build a holistic and highly efficient approach to GRC. MetricStream apps improve business performance by strengthening risk management, corporate governance, regulatory compliance, vendor governance, and quality management for hundreds of thousands of users in dozens of industries, including financial services, health care, life sciences, energy and utilities, food, retail, CPG, government, hi-tech and manufacturing. MetricStream is headquartered in Palo Alto, California, with an operations and R&D center in Bangalore, India, and sales and operations support in 12 other cities globally.
-
Michael Best
Michael Best has assembled a multi-disciplinary team of attorneys who understand how privacy and data security laws intersect with other areas of law and industry-specific regulations. Because we know our clients need to do more than just react to the latest breach, we provide forward-looking, comprehensive counsel and litigation defense. Our Privacy & Data Security team advises and represents clients in many different sectors, including energy, financial services, healthcare, pharmaceutical, media, education, consumer products, agriculture, manufacturing, science, and technology.
-
Michels Wilmes Rechtsawaelte
- External DPO.
- Consulting services with regard to GDPR implementation.
-
MichieHamlett Attorneys at Law
The MichieHamlett law firm remains dedicated to providing personal, tireless and professional legal representation to clients throughout Virginia. Our experienced attorneys and staff have the knowledge and skills to handle the most complex legal matters.
-
Milbank, Tweed, Hadley & McCloy LLP
We’re tenacious lawyers driven to solve your toughest legal challenges. That means harnessing the minds, expertise and specialties from across the firm that are needed for your unique challenges. We’re committed to delivering tailored solutions that exceed your highest expectations. Our technology team offers clients a specialized, deep understanding of rapidly advancing technologies across a wide range of industry sectors.
-
Miller & Martin PLLC
Miller & Martin has helped businesses and individuals achieve their goals for more than 150 years. As a leading Southeastern law firm with attorneys in four offices, our attorneys are committed to understanding our client's objectives in order to help them grow and prosper.
-
MindPoint Group
MindPoint Group provides a complete suite of cyber security consulting services including:
- Cloud Security.
- FedRAMP 3PAO Services.
- Managed Security Services.
- Governance, Risk & Compliance.
- Proactive Security.
- Security Architecture & Engineering.
- Security Operations.
-
Mine PrivacyOps
Mine PrivacyOps is the first platform dedicated to handling data privacy operations while placing consumers and user experience at the center or, as we like to call it, a people-centric data privacy platform. Data privacy professionals should not spend time filling spreadsheets and building manual workflows. Instead, Mine's all-in-one data privacy platform enables companies to automate and orchestrate their privacy operations processes and turn privacy as well as compliance into a business advantage.
The platform's users benefit from a no-code approach and top-notch UX/UI, allowing for fast implementation of data privacy programs. It gives priority to simplicity, automation, ease-of-use and ease-of-setup.
Mine PrivacyOps includes real-time continuous data mapping and classification, privacy request fulfillment (DSR/DSAR), consent management, third-party risk assessments, data privacy risk assessments and more.
With Mine, companies can set up a fully-automated experience with up to 100% system coverage to handle daily privacy operations tasks and comply with global privacy regulations while reducing manual and repetitive work by legal and engineering teams.
-
MinerEye
MinerEye’s VisionGrid platform is self-learning software that automatically identifies, classifies, and tracks data on premise, remote storages, and in the cloud. It enables scalable, automated analysis and governance of unstructured data across the enterprise. This enables companies to efficiently discover, analyze, and act on data for data privacy and security. Its AI technology identifies similar data between data centers and across the cloud by learning patterns, enabling the user to be alerted when a behavioral outlier occurs.
-
MinterEllison
MinterEllison is an international law firm, headquartered in Australia and regarded as one of the Asia-Pacific's premier law firms. Our teams collaborate across Australia, New Zealand, Asia and the U.K. to deliver exceptional outcomes.
Our team of specialist advisers will help you take a pragmatic, risk management approach to protecting and managing your information throughout its life cycle and advise you across the full range of privacy, data protection and cybersecurity issues, from compliance to operational issues to breaches.
-
Mintz, Levin, Cohn, Ferris, Glovsky and Popeo, P.C.
The digital health market is experiencing rapid innovation. Technology companies and health services companies and investors in both are pushing the boundaries of the industry. And consumers are pushing for increased accessibility of their health care data. Mintz has exceptional technical depth in the legal representation of digital health clients — where our core practice strengths in health law, FDA, technology transactions, IP, data privacy and security, and mergers and acquisitions converge.
-
MLex
MLex is an independent media organization providing exclusive market insight, analysis and commentary on regulatory risk. Our customers, the world’s leading law firms, corporations, advisory firms and regulators, rely on MLex to ensure they are well positioned to take advantage of opportunities posed by regulatory change, as well as mitigate the risks. With a track record of uncovering regulatory risk before it breaks in other news outlets, we offer up-to-the-minute coverage of regulatory threats and opportunities from the perspectives of mergers and acquisitions, antitrust, trade, and digital privacy and security, as well as sector-specific regulation across technology, media, and telecom, energy and financial services.
Data privacy and security regulation is rapidly evolving as new technologies and legal questions arise. Be confident you understand the regulatory impact and risk to your clients or business with comprehensive coverage of global regulations from MLex. A one-stop shop for news, analysis and source documents on both regulations in effect and proposed; help you stay informed of legislative processes, court cases, investigations and enforcement trends.
-
Mobius Consulting
Mobius Consulting offers a range of services designed to meet your information risk management requirements. We have invested extensively in our frameworks and methodologies to enable us to guide clients effectively and efficiently. From assessments and roadmap development to designing processes and developing the necessary artefacts, we use a holistic approach to deliver sustainable and targeted solutions.
- IT governance
- Information risk management
- Information privacy
- Information security
- Identity and Access Governance (IAG)
- Third party risk management
-
Mocana
"Mocana" means to set free, and our mission is to protect countries, cities and families by enabling devices of every kind to be trustworthy and run securely and freely.
Mocana was founded in 2002 to help protect military aircraft, vehicles and devices. Our security software protects devices by using cryptography designed to run on microcontrollers and embedded devices. Today, we serve both the defense and commercial sectors.
-
Modulo Security
Modulo Security offers a comprehensive cloud platform to automate the implementation and management of privacy, security and data protection programs. Aligned with standards, frameworks and regulations mainly with the LGPD legislation in Brazil and based on our Metaframework methodology aligned with ISO 31000 and large experience in software, compliance and cybersecurity assessment projects, Modulo created the LGPD Manager, composed of technology, knowledge bases and online services. Modulo offers a complete solution with legal content, expert comments, collaboration, online interviews, complete inventory of areas, systems, people and data, correlation graphs, workflow, templates, dashboards, reports, alerts, integration bots and API for integration with other systems.
-
MONKHOUSE & COMPANY
Monkhouse and Company works with some of the world’s most ambitious leaders, having helped thousands of mid-sized businesses scale up and boost profitability through targeted leadership. Through coaching workshops, strategy sessions and high-quality resources, CEOs have the opportunity to build their skills and become more effective leaders. Call today to find out more.
-
Moore Stephens LLP
We have a privacy service offering within our governance risk and assurance function. Within the privacy team we have a good knowledge of GDPR and have advised a significant number of clients on GDPR compliance.
In addition, we now offer an outsourced DPO solution. Whether or not a DPO is mandatory we can offer an outsourced solution to having someone within the organization that has the responsibility of data protection as the GDPR states is required.
-
Morgan Franklin Consulting
We are a global management and technology consulting firm that works with leading businesses and
government to address critical finance, technology, and business objectives.What we do:
- Accounting & Financial Reporting.
- IPO Readiness.
- Mergers & Acquisition.
- Technology.
- Data & Analytics.
- Corporate Governance.
- Human Capital.
- Investigations.
- Business Transformation.
-
Morgan, Lewis & Bockius LLP
The need for privacy and cybersecurity compliance measures has become a paramount consideration as businesses become more digitally driven, data breaches become more publicized and regulation continues to increase. Company executives, boards of directors, employees, customers and third-party providers all have data security obligations. Leveraging our industry-specific command of privacy and cybersecurity issues and our experience navigating complex regulatory environments, we customize solutions and policies to meet each client’s business demands and ever-changing technology footprint.
-
Morrison & Foerster LLP
Morrison & Foerster's highly respected global privacy and data security practice group is comprised of more than 60 lawyers in offices in the United States, Europe and Asia.
More than 100 countries now have their own data protection laws regulating the collection, use, disclosure and security of personal information. The complex and sometimes conflicting obligations imposed by these laws can be challenging for companies seeking to comply with their privacy and data security obligations. Our lawyers are able to offer practical advice that helps our clients balance compliance with running a business in a cost-effective manner.
-
Mosaic FSI
Mosaic provides specialist privacy consultancy services in New Zealand and overseas to both commercial and government clients. The consultancy services have a strong focus on embedding privacy solutions within an organization as well as management of privacy risks.
The Mosaic privacy services are broadly grouped into the following areas:
- Privacy Strategy — Development of privacy and EU General Data Protection Regulation strategies.
- Privacy Maturity — Maturity assessments, obligation and control reviews, and assurance activities.
- Privacy Frameworks — Creation of privacy management frameworks, development of policies and procedures.
- Privacy by Design — Privacy-by-design services and privacy impact assessments.
- Rights of Individuals — New Zealand Privacy Act and data subject access requests, consent management and privacy statement development.
- Third-Party Management — Privacy risk assessments, privacy reviews during sourcing, development of request for proposal privacy requirements.
- Training and Awareness — Development of e-learning modules, delivery of privacy workshops, development of awareness activities and IAPP certified training courses.
- Breach Management — Development of breach response processes, incident simulations and breach assistance.
- Data Management — Records of processing automation, development of data inventories and data mapping.
- Security — Cybersecurity risk assessments, development of security strategies and security architecture.
-
Moses & Singer LLP
Moses & Singer's Privacy & Cybersecurity Group has extensive and in-depth experience not only with the existing laws that regulate the security of personal data, but also with the industry norms and self-regulatory principles that establish the standards by which anyone who collects, processes or stores personal data should know and look for guidance in designing their practices around safeguarding such data. A proper understanding of the laws and these principles allows for an appropriate assessment of risks and, where appropriate, suitable changes in the controls and procedures intended to avoid and mitigate unacceptable risk. An appreciation for these laws and principles also permits for an effective handling of matters in the event of a security breach and for remediation of resulting harm.
-
Moye White LLP
Moye White's Cybersecurity attorneys have industry knowledge in the cybersecurity field, having backgrounds with technology leaders, Fortune 500 (or even Fortune 10) commercial enterprises, and startups or joint ventures. This background gives Moye White's Cybersecurity attorneys a pragmatic perspective when dealing with general regulatory laws, protecting your intellectual property and applying data privacy requirements to your business.
-
Munvo
Munvo is a leading consulting firm that specializes in helping clients improve their marketing capabilities through a combination of technology implementations, marketing transformation and personalization practices, management consulting and marketing run services. With over 13 years of enterprise marketing experience, Munvo has become a trusted advisor to several international Fortune 1000 organizations across multiple industries. In addition, Munvo Labs has also developed several software products, connectors and accelerators that improve, monitor and automate marketing solution performance, quality assurance processes and regulatory compliances.
-
Murtha Cullina LLP
Murtha Cullina's Privacy and Cybersecurity Group provides the full complement of services necessary to help clients mitigate risk and operate in this new, and ever more challenging reality. Our interdisciplinary team is composed of attorneys from all of our practice areas who stand ready to guide clients through these complex legal and practical challenges.
-
MY DATA manager
Collaborative SaaS platform that automates and simplifies the implementation and maintenance of the GDPR compliance program and enhances the organization's privacy and data protection culture.
Some available tools:- DPIA manager.
- Compliance assessment manager.
- Data mapping.
- Data inventory manager.
- Data explorer.
-
MyData-TRUST
Founded in 2017, MyData-TRUST supports the life sciences industry in leveraging their compliance related to data protection laws. MyData-TRUST is composed of a multidisciplinary team including data privacy lawyers, IT security specialists and life science subject matter experts.
This unique mix guarantees the capacity to efficiently address our clients data protection obligations in most of their critical business areas, including research and development, human resources, marketing, publication, finance, supply and production by offering:
- Trainings and eLearnings
- Risk Assessments
- Legal support
- Data Protection Officer
- Data Protection Representative
-
MyEDPO
MyEDPO offers DPO as a service globally, operating remotely. We have clients based in the EU, U.S., Middle East and more. We generally prepare clients for GDPR, and then continue to serve as DPO. Our consultants are highly qualified data protection professionals, and each client has the benefit of the resources and expertise if an entire team. Finally, we also work with technology experts to support all cyber security needs of clients.
-
myID.com
LifeLock is a modern identity theft protection company. And with the flood of mobile technology and apps, consumer behaviors and expectations are changing — right along with what “identity” actually means. So we enable protection with convenience and put you in control of being uniquely you. We leverage unique data, science and patented technology and provide identity threat detection, proactive identity alerts and comprehensive remediation services.
-
Myntex
Myntex is a private software development company building end-to-end encrypted mobile solutions. We manage our world-class custom data center onsite in our Canadian headquarters. Myntex believes everyone has the right to privacy and that end-to-end encryption is essential. We remove the concerns our privacy-conscious clients have about data breaches, surveillance capitalism, and cybercrime (including zero-click attacks, phishing and malware) which are issues when using smartphones. We have a global distribution team of partners for our flagship product, ChatMail. ChatMail is available on our custom security-focused operating system Renati or on Android for Work on our self-hosted instance of BlackBerry Unified Endpoint Management. We have a very discerning target audience for our customer base, and they don’t trust embedded third-party apps and services, or devices that are open and susceptible to malicious software. That’s why we built Renati. We completely locked down our operating system and the Pixel devices it runs on to make ChatMail even more resilient, eliminating third party apps and Google services, GPS (fused location services), Bluetooth, USB and NFC services. Your search for mobile security isn’t a lost cause. It’s just harder to find. We can help.
-
Nandi Security
Kavalan is a whole home online privacy and security product from Nandi Security. Kavalan protects all devices in the home including laptops, gaming systems, desktops, tablets, smart televisions, smart light bulbs, smart speakers and more from cyber threats and privacy violations. There is no software to install, no hardware or devices to buy and any house can be set up to be protected by the Kavalan cloud application in 5 minutes or less. Kavalan blocks malware, botnets, keyloggers as well as privacy violating technologies such as trackers, beacons, pixels, ad networks, data brokers and more. Consumers can also use Kavalan to block adult content as well as social media and streaming apps. Kavalan provides deep privacy analysis capabilities such as providing insights into which companies have access or the right to access our personal and behavioral information such as geolocation, browsing history, search history, payment information and more. Consumers can try Kavalan free for 30 days — no credit card needed.
-
NAS Insurance Services
NAS cyber liability solutions are specially designed to provide more than just insurance. While our state-of-the-art policies cover a broad range of cyber-, privacy- and multimedia-related exposures, our innovative services, like NAS CyberNet, and our expert cyber claims team provide excellent resources to help businesses stay ahead of ever-changing cyber risks.
-
National Cybersecurity Center of Excellence
The National Cybersecurity Center of Excellence, a part of the National Institute of Standards and Technology, is a collaborative hub where industry organizations, government agencies, and academic institutions work together to address businesses’ most pressing cybersecurity issues.
-
Natuvion
At Natuvion, we combine many years of experience in SAP projects with profound understanding in the utilities industry as an SAP Gold partner. We focus on trusted and creative working methods to provide our customers professional and innovative IT services and solutions for implementation, transformation, analytics and data privacy purposes.
-
Navigate LLC
Navigate helps companies across industries meet their personal information collection and use needs while maintaining responsible, trustworthy, and privacy-sensitive practices. Navigate's high-value services are pragmatic and cost-effective, and include compliance and assessment, remediation and improvement planning, and incident response.
-
NCMIC Group, Inc.
NCMIC was formed by a group of chiropractors with the express purpose of offering malpractice insurance to D.C..s when no one else would. Today, we have grown to become the largest provider of chiropractic malpractice insurance in the nation. "We Take Care of Our Own" is not just a slogan at NCMIC; it's about how the company does business every day.
-
Nelson Mullins Riley & Scarborough LLP
Cybersecurity is one of the most challenging issues facing companies and consumers in today’s interconnected world. Our team uses integrated tactics to address preventive and responsive measures.
-
Netic A/S
- Delivering DPO as a service to a number of companies.
- Many years experience in data privacy, IT security and secure hosting of sensitive personal information.
- Where relevant we deliver software solutions regarding SIEM, SOC, e-learning, IAM, vulnerability assessments, consent management and more.
-
Netka System
Netka Data Privacy and Protection is a product developed by Netka Systems, a company that specializes in providing innovative software solutions for various industries. The NDPP product focuses on helping organizations meet the requirements of data privacy regulations, such as the EU General Data Protection Regulation, Thailand's Personal Data Protection Act and more.
The product offers various features that help organizations manage their data privacy responsibilities effectively. This includes tools for the management of data subjects' rights, assessments of data breaches and collaboration with third-party vendors for compliance with regulations. It also includes features for mapping personal data flows across the organization, along with comprehensive reporting capabilities.
NDPP is designed to be user-friendly and intuitive, requiring minimal training for users. It comes with a customizable dashboard that provides a holistic view of privacy-related activities and key performance indicators, allowing organizations to track their compliance progress over time.
Overall, NDPP is a comprehensive solution that helps organizations navigate the complex landscape of data privacy regulations. With its easy-to-use interface and customizable features, the product is an excellent tool for ensuring your organization's compliance with data privacy regulations.
-
Neustar, Inc.
Neustar is a leading global information services provider driving the connected world forward with responsible identity resolution. As a company built on a foundation of privacy by design, Neustar is depended upon by the world's largest corporations to help grow, guard and guide their businesses with the most complete understanding of how to connect people, places and things. Neustar's unique, accurate and real-time identity system, continuously corroborated through billions of transactions, empowers critical decisions across our clients' enterprise needs.
-
Neutronian
Neutronian provides the most comprehensive approach to data privacy and quality verification. Using a standard evaluation framework, Neutronian produces independent data privacy "credit scores" and in-depth data quality certification. These solutions provide marketers with the transparency they need to confirm that their data and advertising inventory partners are privacy compliant and ensure their campaigns are running in privacy safe environments. High quality, privacy compliant data providers that work with Neutronian to improve their data privacy scores or achieve certification can be rewarded via faster sales cycles and increased customer trust. For more information, please visit neutronian.com.
-
NewDay IT Risk & Assurance Services
For (larger) SME companies we help them become privacy proof by offering a multi-disciplined account team consisting of lawyers, information security specialists, cyber-security specialists and marketing and communication specialists. We use a custom tailored methodology for practical fit
This specifically arranged client team also performs the role of DPO for a fixed price per month. In our DPO services, all expertise for direct activities are included including up-scaling due to, e.g., data breaches.
-
Newport Thomson
Can you conduct business anywhere in the world?
Today, global laws and regulations are part of doing business in this data-oriented digital economy. The more we use data in marketing and sales, the more privacy issues arise. Government regulation is inevitable, and businesses cannot afford to ignore them. Yet, your organization cannot create policies and procedures for every law out there! How do you develop global data and privacy policies and procedures that respect your customer while meeting the standards set by new regulations?
Based on Ann Cavoukian’s "Privacy by Design & Default," our UNIVERSAL Data & Privacy Program™ allows business leaders to sleep better knowing they are intelligently managing global business risks. We work with your team to set up data, privacy and communication practices designed to respect your customers' individual rights while being compliant in all countries. One privacy system for all countries.
-
NextLabs
NextLabs provides data-centric security software to protect business-critical data and applications. It’s patented dynamic authorization technology and attribute-based policy platform help enterprises identify, monitor and control access to sensitive data, and help prevent security and regulatory violations—whether on the cloud or on premise. The software audits and automates enforcement of security controls and compliance policies to secure information sharing across the extended enterprise. NextLabs has some of the largest global enterprises and government agencies as customers and strategic relationships with industry leaders. The company holds approximately 60 patents in Attribute Based Access Control, Dynamic Authorization, Automated Policy Enforcement, and Information Risk Analytics.
-
Nicholson Search & Selection
Nicholson is a specialist technology recruiter, we work with clients ranging from some of the biggest software companies in the world to niche E-commerce start ups. With multi-lingual teams in each of our specialist markets based in London, Warsaw and Poznan we are well placed to support the international growth of our clients and to provide global opportunities for our candidates.
Founded in 2005, Nicholson International was re-launched and re-branded as Nicholson Search & Selection in 2013 to focus exclusively within the Software, E-commerce and Digital markets. The Nicholson name has long been associated with excellence in the Search & Selection market and we have an exceptional track record. Since 2005 we have supported our technology clients in hiring over 1300 sales, marketing and technical professionals.
-
Nixon Peabody LLP
Our Data Privacy and Cyber Security team provides counsel on threat prevention and mitigation in the context of your key business drivers: intellectual property, financial/fiduciary, regulatory/compliance, operational, growth/opportunity, strategy, human capital and reputation/brand.
We employ an integrated approach focused on (1) preventing attacks through proactive mitigation programs; (2) monitoring and detecting potential cyber risks; and (3) responding to breaches and other adverse events. We customize our data privacy and cybersecurity services to your business — size, industry, technologies, stakeholders and compliance regimes.
-
nNovation LLP
nNovation lawyers counsel companies, industry associations and other private and public sector parties in their business relationships and practices, and in connection with a broad range of Canadian regulatory regimes.
-
NopSec, Inc.
NopSec operates with one mission: to help people make better decisions to reduce security risks. Our team is passionate about building technology to help customers simplify their work, manage security vulnerability risks effectively, and empower them to make more informed decisions. Our software-as-a-service approach to vulnerability risk management offers an intelligent solution to dramatically reduce the turnaround time between identification of critical vulnerabilities and remediation.
-
Nortal
Nortal offers its DeepScan solution to help companies comply with the EU General Data Protection Regulation. DeepScan analyzes all of the data sources within an enterprise in order to map out where all of the information is located, including locations such as databases, emails, and scanned documents. After scanning all of the information, DeepScan will classify the information into different categories, determining whether it is personal information or business data. All of the information is placed onto a dashboard where companies can get a bird-eyes view of all the data they currently possess.
-
Northrop Grumman Corporation
A highly skilled, robust cyber workforce is essential to defending the nation in cyberspace and maintaining security and economic prosperity into the future. As sensors improve, as we collect more cyber intelligence to analyze, and as adversaries continue to find new and faster ways to evade defenses, the nature and variety of cyber careers will transform. We operate across domains, disciplines and national boundaries. Our teams rapidly deliver capabilities to our warfighters to defend our nation and our allies. Together with government and academia, Northrop Grumman is committed to exploring innovative and collaborative solutions to meet the cyber challenge.
-
Norton Rose Fulbright LLP
Our global group of dedicated data protection and cyber lawyers represents clients from across industries that operate in many corners of the world, each facing a unique set of data protection, privacy and cybersecurity concerns, ranging from business strategy issues to transactions, and from cyber incidents to government investigations and litigation. Advising clients across the globe affords us a 360-degree view of cyber issues that we leverage to provide advice that is holistic, informed and practical, and reflects industry- and region-specific risks.
-
NPC’s Immersion Data Breach Response
We have been family owned and operated in central Pennsylvania since 1954, and our family-oriented, performance-based culture extends to our entire workforce. We'll help you manage and distribute your time-sensitive, mission critical information.
Accountability
- We create custom workflows with layers of safeguards and controls to ensure the right information gets to the right person in the right place, on time, every time.
Quality
- We combine deep data programming expertise with secure, data-driven workflows to ensure the quality and integrity of your information.
Security
- We adhere to strict government and commercial standards for physical, personnel, and data and system security to protect you and your customers’ most valuable information.
Responsiveness
- We work around the clock (yes, really) to deliver the level of customer service you expect and fast turnaround you require.
Flexibility
- We prepare for and adjust to your changing volumes, timetables and requirements.
Adaptability
- We mold our workflows and processes to fit your specific needs. Not the other way around.
-
NT Analyzer
The product
Existing legal obligations
Today, almost all companies have a consumer-facing application or website. Under privacy laws around the world, companies are obligated to know the full range of data collected from users and transmitted to third parties. Violating these laws can result in large fines, brand-damaging publicity and potential litigation.
The problems
Our experience with clients has shown that most companies are blind to data leakage from their apps and websites because their traditional cybersecurity solutions are focused on the company data center, not the user’s device (e.g., smartphone, computer, tablet, etcetera).
Teams are also often unaware of data leakage due to a necessary reliance on external code and aggressive development cycles, which are the norm for most industries. This leads to inadvertent third-party data sharing that is difficult to detect and mitigate.
Companies are forced to rely on unreliable and unverifiable statements from vendors regarding data sharing and collection.
There is also a lack of communication between the marketing, development and legal teams due to a misunderstanding of what qualifies as “personal information” or “personal data” under the relevant law.
The NT Analyzer solution
NT Analyzer steps into the shoes of a user and removes the blind spots, allowing a company to catalog all of the collected and disclosed data, and identify relevant risk.
After reviewing network traffic from the end user's device, NT Analyzer identifies all data sharing and categorizes it under relevant legal risks. All legal findings are protected by the attorney-client privilege.
Once a risk has been discovered, the company can view the specific network traffic in their custom dashboard and quickly mitigate.
From there, the marketing or development team can see an objective picture, empowering companies to solve their most glaring data protection issues and facilitating the conversation between development and legal departments.
-
Ntrepid
Ntrepid is a mission-driven provider of cutting-edge technology solutions for government and enterprise to discreetly and safely conduct sophisticated online operations in the most hostile online environments. We leverage our deep experience in the national security community to anticipate our customers' needs and provide solutions before the requirements are expressed. Our heavy investment in research and development allows us to stay ahead of the rapidly changing internet landscape. Ntrepid's innovative solutions empower advanced online research, analysis and data collection, while obscuring organizational identity and protecting your mission.
-
NuData Security
NuData Security, A Mastercard Company, is an award-winning behavioral biometrics company. Our flagship product, NuDetect, continuously verifies a users’ online identity by authenticating the user based on their natural interactions online — behavior that can't be mimicked or replicated by a third party.
The solution harnesses powerful behavioral and passive biometric analysis to help clients predict fraud and risk. It accurately identifies the authentic good user behind the device and builds a detailed contiguous profile of the user based on how they interact with online services using their devices.
-
Numeric Accounting
Numeric Accounting operates from Southampton and Salisbury and provides a comprehensive selection of professional accountancy solutions to businesses throughout the U.K. Their services encompass a wide range of support, such as bookkeeping, payroll assistance, tax compliance, Xero online accounting, company valuations and more. Contact them today to discover how their expert team can assist you and your business.
-
NXG Strategies
NXG Strategies has deep expertise as an industry pioneer in identity theft investigation, fraud remediation and data breach response, serving millions of consumers nationwide.
-
NYMITY Inc.
Nymity offers a variety of privacy-related, software solutions designed specifically for the privacy office. Nymity’s suite of services includes privacy management software that allows the privacy office to demonstrate accountability and compliance and to report on the status of a privacy program with quantitative metrics. In addition to benchmarking solutions to compare privacy programs among organizations, Nymity offers privacy management planning portals and status reports, as well as the ability to assign, communicate and report privacy ownership within the organization. The company also offers a number of privacy templates for GDPR and BCR compliance.
-
Odaseva
Odaseva enterprise data privacy compliance automation platform offers solutions from personal data life cycle management, data deletion and anonymization, to data protection backup/archive, granular encryption, and data breach detection solutions for Cloud SaaS environments, like Salesforce.com.
With more than 2 million users and extreme data volumes under management — hundreds of billions of records per year — the platform is in use by Fortune 1000 organizations worldwide.
-
ODO 24 sp. z o.o.
A leading Polish firm specialised in personal data protection and information security. Our experts have a wide experience implementing the GDPR, performing the DPO function, carrying out the DPIA and risk analysis, as well as auditing compliance with ISO norms. Throughout our activity, we have serviced hundreds of large and medium enterprises, as evidenced by their references.
Next to providing privacy services, we are leading data protection trainers in Poland. Our flag product, among other courses, is a four-day state-certified DPO course (since 2016).
-
Ogletree Deakins
United States
Multifaceted and rapidly evolving, data privacy and data protection laws present many challenges for employers in the United States. Whether our clients are healthcare companies or educators, or in the retail, technology, manufacturing, travel, transportation, or media industries, we are adept at helping them navigate their obligations under this emerging area of state and federal law.International
For clients with employees or operations outside the United States, strict data privacy requirements can present a minefield of hidden dangers and potential liability. Our Data Privacy attorneys have considerable experience helping employers manage the intricacies and hazards of data privacy laws worldwide, including throughout the European Union and North America, as well as in numerous jurisdictions in Asia and South America.
-
Ohalo
Ohalo provides automated software solutions for our clients’ data discovery, mapping and subject access request needs. Our Data X-Ray lets users scan their data sources for regulatory-responsive personal data, mapping the results out for the user through an easy-to-use interface at both (i) a high level and (ii) a more detailed column-by-column, file-by-file view.
Users can then search across those scanned data sources at scale for individual personal data elements in response to data subject requests, saving many hours of manual labor and/or consultant/lawyer fees.
The Data X-Ray supports both structured and unstructured data and a wide range of data sources.
-
OlenderFeldman LLP
Our attorneys have provided data privacy and security representation since the earliest days of the internet and the adoption of HIPAA. We bring our depth of knowledge and experience to bear in designing policies and procedures to mitigate corporate risks relating to data and information privacy and security; analyzing and negotiating contractual obligations between companies exchanging PII, PHI or confidential data; and enabling compliance with EU and cross-border data transfer regulations. We constantly monitor evolving regulatory schemes, best-practice standards and technology models to ensure that our clients remain at the forefront of compliance.
-
Omaira Consulting Group
DPO and other privacy services such as gap analyses, mapping, DPIAs, etc.
-
Omnisient
Omnisient is a privacy-preserving data collaboration platform that enables the sharing of valuable consumer insights across multiple businesses in a secure and risk-free manner. It removes personally identifiable information from data sets and creating a secure collaboration environment where business maintain full control of their data. The platform features EU General Data Protection Regulation-compliant first-party data analysis for partnership marketing and the creation of valuable data products for data monetization and commercialization.
Omnisient has anonymized and protected more than 148 million consumer records for leading banks, insurance providers, retailers, telecommunications and health care providers.
-
Onapsis
Onapsis cybersecurity solutions automate the monitoring and protection of your SAP and Oracle applications, keeping them compliant and safe from insider and outsider threats. As the proven market leader, global enterprises trust Onapsis to protect the essential information and processes that run their businesses.
-
One Beacon Insurance Group
Despite a company's best efforts to protect its employees’ and customers’ personally identifiable information, this data can be compromised, leaving the company potentially liable for failure to protect that private data.
Even if a data breach is not confirmed but only suspected, the company could be subject to federal and state privacy and notification laws. In response, we offer tools and services to help mitigate this risk and loss on a pre- and post-breach basis — support that could be invaluable at the time of loss.
-
OneTrust
OneTrust offers a privacy management software platform designed to help organizations comply with data privacy regulations across different sectors and jurisdictions, including the EU GDPR. It provides assessment automation tools for PIAs, DPIAs, and vendor-risk assessments; maps data to provide a central register of data flows, processing, and reporting; scans sites for cookie compliance; and provides solutions for subject rights, consent and incident management. The platform is pre-configured with templates and workflows that can be tailored via a point-and-click user interface based on unique industry and organizational requirements. The solution is available in the EU cloud or on-premises, and can upgrade and scale as an organization’s privacy program matures.
Take a look at the suite of tools OneTrust offers free to IAPP members here.
-
Onwardly
Establish a solid privacy program and let Onwardly guide you as you work toward becoming privacy ready ⏤ at home and internationally.
Develop the foundational roles, policies and workflows needed for global privacy frameworks such as the EU General Data Protection Regulation, and earn the trust of your customers.
Expand into international markets and be ready to meet your privacy obligations — wherever you want to do business.
- Confidently operate your business on the global stage.
- Show your customers you are taking privacy seriously.
- Move your business forward without more resources.
-
OpenDNS
OpenDNS was founded in 2006 with the mission to provide a safer, faster and better internet browsing experience for all users. Initially, OpenDNS provided a recursive DNS service for use at home, and in 2009, introduced a service for the enterprise market. In 2012, OpenDNS launched an enterprise security product, called Umbrella. Its rapid success and customer adoption led to OpendDNS being acquired by Cisco in 2015.
-
OpenText
Our EIM products enable businesses to grow faster, lower operational costs, and reduce information governance and security risks by improving business insight, impact and process speed.
Advisory Services
Increase productivity and compliance, reduce risk and optimize business processes.EIM Project Delivery
Gain greater business insight and increased performance in project execution and delivery.Data Migration Services
Increase customer satisfaction, compliance and security, digitize processes.Application Upgrade
Maintain tight regulatory compliance, share information easily and drive innovation.Packaged Solutions
Reduce product development lead times and costs, improve support and service.User Adoption Services
Unite information securely, maximize data value and transform operations.eDiscovery Services
Increase productivity and compliance, reduce risk and optimize business processes.Information Outsourcing
Gain greater business insight and increased performance in project execution and delivery.Translation & Localization Services
Increase customer satisfaction, compliance and security, digitize processes.
-
OPSWAT
OPSWAT is a global cybersecurity company that has provided security solutions for enterprises since 2002. Trusted by more than 1,000 organizations worldwide, OPSWAT prevents corporate damage by enabling the most effective solutions to eliminate security risks from data and devices coming into and out of an organization.
MetaDefender by OPSWAT is a powerful and flexible security solution for ISVs, IT admins and malware researchers, providing simultaneous access to data sanitization, vulnerability assessment, multiple anti-malware engines, heuristics and additional threat protection technologies residing on a single system. At the heart of the solution, the MetaDefender multi-scanning engine uses more than 30 anti-malware engines to scan files for threats, significantly increasing malware detection. MetaDefender can be used to analyze a large database of files and provide extensive data points about which engines have detected each threat. It is also easy to use alongside other analysis software, including dynamic analysis solutions, to provide detailed contextual information about files
-
Or-Hof Tech and IP Law
Provider of legal and DPO services.
Dan Or-Hof is ranked Band 1 at IT law and Data Protection on Chambers & Partners 2022.
Or-Hof Technology & IP Law is a highly specialized boutique firm founded by attorney Dan Or-Hof with a specific focus on technology and innovation. Accredited by Dun’s 100 and Coface-BDI as a leader in cyberlaw, high tech, and international commerce, the firm is a natural port-of-call for companies seeking top-quality legal services.
We provide our clients with the personal attention they deserve in order to gain a deep understanding of their business needs and provide the best quality service in regards to privacy and data protection compliance programs and legal guidance to clients of all sizes and sectors.
-
Orrick, Herrington & Sutcliffe LLP
Orrick’s Cyber, Privacy & Data Innovation team collaborates with innovative companies globally to bring data-driven products and services to market. We focus on ensuring our clients maximize data value while addressing global data privacy requirements and proactively reducing security risk.
-
Osano
Osano is a complete data privacy platform that helps businesses comply with 40-plus privacy regulations around the globe. Osano offers the industry’s only No Fines, No Penalties Pledge. Features include consent management, data subject access requests, data discovery, EU General Data Protection Regulation representative services and vendor monitoring with in-depth analysis of more than 11,000 vendors.
-
Osborne Clarke
Our team of experienced lawyers takes the headache out of resolving privacy and data protection law issues in Europe’s trickiest jurisdictions. More than that, we help clients take advantage of the ever-growing number of opportunities to make the most of their data, particularly when it comes to commercializing it compliantly.
-
OTRS ASIA
OTRS Group is the manufacturer and the world's largest provider of the enterprise service management suite OTRS. It offers companies industry-independent software solutions for structured communication in customer service, IT service management and security management. In addition to the core product OTRS, the security solution STORM ensures efficient cybersecurity incident management and transparent documentation in accordance with standards such as ISO 27001.
-
Oxford Consulting
If you have current or planned technology projects—but don’t have sufficient time, resources or expertise to complete them—we can help through our IT Project-Based Consulting services. We can provide skilled resources—including architects, analysts, developers, and project managers—for projects of all sizes around Application Development, Web Development, ERP, Data and Analytics, and more.
Examples of our IT Consulting areas of expertise include:
- Enterprise Architecture.
- Application Development, including Java Development and .NET Development.
- IT Program and Project Management.
- B2B Integration and Managed File Transfer.
- Integration and APIs.
- Omnichannel Commerce and Order Management.
- Data and Analytics.
In addition, we assist companies with a variety of needs including:
- User Experience (UX) and User Interface (UI) Design.
- Quality Assurance (QA) and Testing.
- Business Analysis.
- ERP (Oracle, SAP).
- Database Administration/DBA.
- Network Administration and Engineering.
-
Ozbek Attorney Partnership
As a firm, we have been advising our clients in relation to data privacy and data protection for many years, and it has become of great importance among our areas of practice especially with the enactment of the relevant law April 2016. Since then, we have been advising local and international companies in relation to their compliance projects. We are working on compliance projects with the Law on the Protection of Personal Data for our clients, and we offer regularly support clients in relation to regulatory issues, as well as implementation of technical and administrative measures. For the technical measures, we also team up with information security experts. Our team works closely with global organizations to help them with the preparation and management of their global privacy programs. We actively advise controllers and processors in relation to their contract negotiations, some of which provide services to EEA and are subject to the GDPR.
We closely follow the regulatory changes and jurisprudence both in Turkey and internationally. Our blog has updated information on privacy and data protection in Turkish and English languages. We support our client’s compliance teams in all aspects for their processing activities, audit and trainings.
-
PA Consulting
Our experts can help identify the impact of GDPR and other privacy legislations and shape, mobilize and deliver transformation programs to achieve compliance, embed privacy within your organization and generate business benefits.
Our services include:
- We offer a six-week sprint to assess readiness against the GDPR requirements and define a remediation programme in line with your risk appetite. Our gap assessment framework takes into consideration not only the GDPR requirements but also other privacy best practices .
- We have a multi-disciplinary team of specialists – covering data protection, cyber security, regulation and compliance, risk management, IT and business change – who can help design and implement a sustainable privacy and data protection programme.
- We provide DPO-as-a-service offering as a practical and cost-effective solution for organisations wishing to outsource the DPO tasks and duties.
-
Palo Alto Networks
We are the global cybersecurity leader known for always challenging the security status quo. Our mission is to protect our way of life in the digital age by preventing successful cyberattacks. This has given us the privilege of safely enabling tens of thousands of organizations and their customers. Our pioneering Security Operating Platform emboldens their digital transformation with continuous innovation that seizes the latest breakthroughs in security, automation and analytics. By delivering a true platform and empowering a growing ecosystem of change-makers like us, we provide highly effective and innovative cybersecurity across clouds, networks and mobile devices.
-
Palqee
Palqee’s data protection and privacy management software platform is accessible and collaborative. It helps data protection officers, data consultants and privacy lawyers in Brazil, EU, U.K. and U.S. record, map and report on stored personal data. It also details where it is stored, who handles it and its purpose. Subject access and owner rights requests can be logged, processed and reported on to comply with the EU General Data Protection Regulation, Brazil's General Personal Data Protection Law and the California Consumer Privacy Act.
-
Panetta & Associati
Panetta & Associati is the leading EU and Italian law firm offering data protection, privacy and it cyber security services both under the EU directive 95/46 and the GDPR. With years of experiences assisting multinational EU and foreign based corporations, P&A has an excellent track record in the community. Since 2017 P&A offers DPO services as well.
-
Patriot Technologies, Inc.
Patriot Technologies is the trusted adviser that provides secure, tailored hardware and software solutions to our global customers based on a thorough understanding of their business environment, market developments and organizational goals. Government and commercial organizations rely on Patriot to deliver a solution that leverages and goes beyond industry standard products. We can address all aspects of a technology development life cycle, from consulting and designing a solution to integrating, implementing and managing the ultimate deliverable. The company has a proven track record of success with hardware and software solutions with an emphasis on security.
-
Paul, Hastings, Janofsky & Walker LLP
As companies conduct more and more business online, the risks to sensitive company and customer information continue to grow. The regulatory framework governing use and storage of data has likewise become increasingly complex. To succeed in this challenging environment, companies must proactively ensure their compliance and address litigation and investigations when they arise. We can help.
We have guided clients through investigations by federal authorities of potential privacy-related problems, advised on establishing privacy and information security compliance programs, and provided counsel on responding to suspected security breaches and personal data disclosures.
Our lawyers have represented clients in enforcement investigations before the U.S. Federal Trade Commission and states’ attorneys general, as well as in litigation involving privacy and direct marketing issues.
-
Pembroke Privacy
Pembroke Privacy is a data protection consultancy that offers the following services:
- DPO support services both onsite and offsite.
- Outsourced DPO services.
- Data protection compliance assessments.
- Data protection impact assessments.
- Drafting of essential data protection policies, procedures and protocols.
- Data inventories.
- Data protection training, including in person training and e-learning. Our e-learning courses are both generic off-the-shelf courses and bespoke courses created specifically for individual clients.
- Pembroke Privacy is proud to partner with the IAPP to provide Certified Information Privacy Professional/Europe (CIPP/E) training.
- Data breach management.
- Data subject access request management.
- Advice on e-privacy and direct marketing.
-
Pennington’s Solicitors LLP
Our data protection and privacy team has a wealth of experience in all aspects of U.K. data protection and privacy laws, including data security, cross-border transfers, consent issues, data controller/processor issues, email marketing and social media campaigns, and subject access requests. We draft and advise on privacy policies, data collection processes, data management policies, data sharing agreements and international data transfer agreements. Members of our team also offer expertise in the privacy rights of individuals, including applying for and defending privacy injunctions and freedom-of-information laws.
-
Pepper Hamilton LLP
Pepper Hamilton advises businesses on planning, drafting and implementing privacy, security and data protection policies and “best practices,” compliance with applicable laws, regulations and rules, and crisis management and litigation strategies for noncompliance. We counsel on such issues as data security and breach of security issues, online security and privacy, domestic and international anti-spam legislation, and issues specific to industries, such as health care, financial services, and manufacturing and retail. We have defended litigation stemming from breaches of personally identifiable information and have defended executives and corporations in white collar investigations relating to compliance issues.
-
Perkins Coie LLP
Perkins Coie’s Privacy & Security group represents some of the world’s leading Internet companies, wired and wireless communications providers, brick-and-mortar retailers and emerging online businesses.
We work closely with our clients to help them stay abreast of national and international regulatory and statutory changes and industry initiatives related to mobile applications, online and mobile advertising, means of capturing location information, and cloud computing. We are ranked by Chambers USA among the best firms in the nation for privacy and data security. We also were recognized by Law360 as a “Practice Group of the Year” in 2013.
We regularly advise clients on how to implement "privacy by design" principles into their organizations, and how to best respond to law enforcement and civil requests for user information, sophisticated network attacks and other security breaches. Our data breach and network intrusion response team, including several former DOJ cybercrime prosecutors, regularly counsels clients with concerns about data breaches and assists with coordinating incident response and required notifications.
-
PHEMI Systems
The PHEMI Trustworthy Health DataLab is a unique, cloud-based, integrated big data management system that allows healthcare organizations to enhance innovation and generate value from healthcare data by simplifying the ingestion and de-identification of data with NSA/military-grade governance, privacy and security built-in.
Conventional products simply lock down data; PHEMI goes further, solving privacy and security challenges and addressing the urgent need to secure, govern, curate and control access to privacy-sensitive personal healthcare information (PHI). This improves data sharing and collaboration inside and outside of an enterprise — without compromising the privacy of sensitive information or increasing administrative burden.
Built on privacy-by-design principles, the software gives researchers, scientists and clinicians faster access to more information while ensuring they only see data on a need-to-know basis. Responsible data sharing and a governance framework facilitate compliance with privacy regulations.
PHEMI Trustworthy Health DataLab can scale to any size organization, is easy to deploy and manage, connects to hundreds of data sources, and integrates with popular data science and business analysis tools.
-
Philadelphia Insurance Companies
Philadelphia Insurance Companies, a member of the Tokio Marine Group, designs, markets and underwrites commercial property/casualty and professional liability insurance products for select industries.
The Cyber Security Liability Endorsement offers a subset of the standalone Cyber Security Liability Product with lower limits and premiums. The endorsement includes:
- Coverage for security event costs, such as attorney fees, computer forensic costs, regulatory fines and penalties, customer notification expenses and public relation expenses.
- Third-party coverage triggered by any third-party claim, lawsuit or other demand that alleges damages resulting from a security breach or privacy breach of the insured's computer system.
- Employee privacy liability for claims resulting from a breach of the insured's employee's information.
-
Pierce Atwood LLP
Pierce Atwood has assembled a cross-disciplinary team with both legal and industry expertise, combining their knowledge of intellectual property, technology, financial services, health care, energy, employment and litigation with relevant expertise in privacy and data security issues to help clients solve problems and get deals done. Together, they provide clients with practical advice on complex issues, such as record retention, breach notification, privacy policies, information safeguarding, e-discovery, regulatory compliance and other privacy and cybersecurity issues.
-
PII Tools
PII Tools is the world leading software solution for automated personal and sensitive data discovery at scale. PII Tools' revolutionary context-aware AI technology learns from data over time to produce actionable drill-down reports for GDPR, CCPA, LGPD, PCI, PHI and similar. PII Tools will enable you to quickly process both structured and unstructured digital assets across all major formats and storages, local and in the cloud. This on-premise solution is used by DPOs, auditors and service integrators to identify and review sensitive information for compliance, data migration or breach incident response.
-
Pillsbury Winthrop Shaw Pittman LLP
Pillsbury offers unparalleled experience and knowledge in connection with critical cybersecurity, data protection and privacy law issues. Proper management of information — its security, use and misuse — is now a top priority for businesses worldwide and the need to proactively address these issues has never been greater (e.g., given EU General Data Protection Regulation anti-trust level fines or the new California Consumer Privacy Act). Pillsbury’s cross-disciplinary, multi-national Cybersecurity, Data Protection & Privacy solutions team has the unique skill set necessary to understand and properly respond to the broad spectrum of privacy and security considerations companies face today.
-
Pindrop Security
Pindrop solutions are leading the way to the future of voice by establishing the standard for security, identity and trust for every voice interaction. Pindrop solutions protect some of the biggest banks, insurers and retailers in the world using patented technology that extracts an unrivaled amount of intelligence from every call encountered. Pindrop solutions help detect fraudsters and authenticate callers, reducing fraud and operational costs, while improving customer experience and protecting brand reputation.
-
Ping Identity Corporation
Ping Identity envisions a digital world powered by intelligent identity. We help enterprises achieve Zero Trust, identity-defined security and more personalized, streamlined user experiences. The Ping Intelligent Identity Platform provides customers, employees and partners with access to cloud, mobile, software as a service, and on-premises applications and application programming interfaces, while also managing identity and profile data at scale. We provide flexible options to extend hybrid IT environments and accelerate digital business initiatives with multi-factor authentication, single sign-on, access management, intelligent API security, directory and data governance capabilities.
-
Pinsent Masons LLP
Information about individuals, whether customers, prospects, employees or suppliers, is essential to business and government. However, legal frameworks governing the use of that information vary significantly in different jurisdictions. Pinsent Masons’ Information Law specialists have many years of experience of navigating international data privacy laws to deliver user-friendly, practical advice that can be readily implemented and meet our clients’ commercial requirements.
-
Pirola Pennuto Zei & Associati
Pirola Pennuto Zei & Associati is one of the leading tax and legal firms in Italy with more than 800 professionals and 13 offices in Italy and abroad.
The Firm’s Compliance & Data Protection practice is formed by experienced professionals who have been offering highly specialized consultancy services for years to support their clients in managing digital transformation issues.
The practice’s professionals assist clients in implementing all the safeguards prescribed by national and supranational data protection laws, as well as in complying with the applicable data protection authorities’ decisions and sector-specific regulations and best practices (e.g., in the health care, banking and finance, and retail sectors).
In this context, the firm provides a broad scope of privacy and data protection compliance services, such as, for example:
- Assessment on the client’s compliance with the applicable data protection legislation, identifying the current gaps and establishing the remedial actions to be
taken in order to ensure full compliance. - Drafting of IT outsourcing and, in general, data protection-relevant contracts and data protection agreements and assistance in the negotiation.
- Internal and supplier — or, in general, third party — data protection audits.
- Consultancy on the execution of marketing initiatives, including loyalty programs, in compliance with data protection laws.
- Mapping of transfers of personal data to third countries and consultancy on the additional safeguards to be adopted to ensure an adequate level of data protection.
- Consultancy on the design of applications and computer programs in compliance with the principles of data protection by design and by default.
- Data breach management services.
- DPO as a service.
For any further information on the services we provide and on our Compliance & Data Protection practice, please do not hesitate to contact Roberta Di Vieto, equity partner of the Firm and Head of the Compliance & Data Protection practice, at roberta.di.vieto@studiopirola.com.
- Assessment on the client’s compliance with the applicable data protection legislation, identifying the current gaps and establishing the remedial actions to be
-
Pitblado LLP
Our nationally recognized privacy law services include assisting all areas of privacy law, Canadian Anti-Spam Legislation and access to information. Our team has extensive insight navigating technical complexities within the digital space, lending provision of practical solutions for compliance and enforcing privacy rights. Such services include conducting privacy law audits, drafting privacy policies and consent language, drafting privacy/outsourcing agreements, conducting privacy training seminars, and managing privacy complaints and settlements, as well as providing ongoing privacy law advice for new client initiatives and corporate transactions.
-
PlanetVerify
PlanetVerify is a document collection platform designed to collect customer data by gaining explicit consent in order to ensure the company is compliant with the General Data Protection Regulation. The platform offers real-time tracking of data requests, and gives organizations a data trail of the ways it manages customer consent. PlanetVerify’s services are fully encrypted, and allows organizations to respond to consumer and employees requests to access, move, or erase their data.
-
Plausible Analytics
Plausible Analytics is a simple, open source, lightweight (< 1 KB) and privacy-friendly alternative to Google Analytics. All the site measurement is carried out anonymously. Cookies are not used and no personal data is collected. There are no persistent identifiers nor is there cross-site or cross-device tracking. Your site data is not used for any other purposes.
-
PlayWell, LLC
Backed by 25 years of compliance experience, PlayWell, LLC, provides privacy impact assessments, policy and process development, training, technology assessments, and employee training and guidance on developing and implementing organizational cultures of compliance. PlayWell works across all industries, but we have a special areas of focus and specific expertise in the youth entertainment and education sectors. We are committed to converting complex policies into actionable guidance tailored to each organization’s resources and goals.
-
Pointsharp
Pointsharp provides leading products for secure login and multifactor authentication that allow enterprise organizations to embrace a modern workplace.
-
Ponemon Institute
Ponemon Institute conducts independent research on privacy, data protection and information security policy. Our goal is to enable organizations in both the private and public sectors to have a clearer understanding of the trends in practices, perceptions and potential threats that will affect the collection, management and safeguarding of personal and confidential information about individuals and organizations. Ponemon Institute research informs organizations on how to improve upon their data protection initiatives and enhance their brand and reputation as a trusted enterprise.
In addition to our research, Ponemon Institute provides strategic consulting to private and public sector organizations interested in establishing or enhancing their privacy, data protection, and security practices. To ensure that their goals are achieved, organizations engage us to assess their practices and conduct workshops and training programs.
Ponemon Institute is the parent organization of the Responsible Information Management (RIM) Council. The RIM Council draws its name from the practice of Responsible Information Management, an ethics-based framework and long-term strategy for managing personal and sensitive employee, customer and business information.
-
Pontus Vision
Data mapping, data discovery with dashboard to control the data eprivacy risks, forms and reports to DSAR, DPIA and data breach.
-
Porter Wright Morris & Arthur, LLP
The ability to gather, acquire, store and analyze vast amounts of data has forever changed the way companies do business. It presents risks, including the chance of betraying customer and business relationships, incurring unfavorable public sentiment, and incurring costly litigation through inadvertent disclosure of sensitive information. Our privacy and data security attorneys help clients reduce the risks inherent to data use, storage and transmission, and respond appropriately and in legal compliance when a breach of information occurs. We also advise clients about protecting company confidentiality intellectual property and trade secrets in social media.
-
PossibleNOW
MyPreferences is a data management platform that connects any system or interface used to communicate with customers across the entire company. It collects express consent, cookie consent and preferences that customers share about themselves, stores them securely in a central repository and integrates them with any system the company uses to interact with those customers in the future. MyPreferences enhances customer experience by collecting their communication preferences such as topic of interest, preferred channel and frequency. It reduces marketing compliance risk by adapting to constantly changing privacy regulations, ensuring consent is collected and opt-outs are honored.
-
Poyner & Spruill LLP
We know information is a vital asset of any business. Among the information of greatest value to organizations is data regarding customers, employees, and business contacts. The rapid proliferation of privacy and information security law that applies to that data should not prevent you from getting the benefit of your valuable information. Likewise, privacy concerns should be addressed in a practical, strategic manner that allows your organization to thrive, rather than restraining your use of this information. The attorneys in our Privacy and Information Security practice area understand these concerns and bring a practical approach to privacy and information security compliance.
-
Preclusio
Preclusio offers automated, on-premises privacy management software designed to help companies comply with regulations such as the GDPR and CCPA. We can automate your data inventory, classify your data through our machine-learning driven process, and simplify your data subject access requests. Our solution never lets personal information leave your system boundary and is designed to grow with your company.
-
Prevalent Networks
Prevalent is helping global organizations manage and monitor the security threats and risks associated with third- and fourth-party vendors. Prevalent introduced the only unified platform for Third Party Risk Management and the first vendor evidence sharing portal that enables collaboration between both enterprises and vendors.
-
Prighter
Prighter provides representation according to Art 27 GDPR as a service. We combine the legal expertise of a specialized European law firm with high-tech engineering that makes the top tier legal advice of a reputable law firm accessible and affordable.
You benefit from our experience as certified data protection officers and representatives of companies all over the world ranging from start-ups to major banks, airlines and tech giants. Our service and tools include:
- Representation according to Art 27 GDPR for whole EU and the UK
- GDPR Dashboard to manage your privacy related functions
- A DSR (Data Subject Requests) tool to channel, filter, structure and handle privacy requests
- Certificates to let your customers and partners know that you are GDPR compliant
- A knowledge hub with relevant material to train and educate internal staff
-
Privacera
Privacera helps enterprises discover, manage, and monitor sensitive information within their systems. It continuously ingests the enriched audit data and evaluates using machine learning and analytical models, which can generate alerts and perform mitigating actions. It can track how users are using sensitive data and correlates use in one dashboard. In addition to discovering and mapping data, it can monitor where data is flowing.
-
Privacy Analytics
Privacy Analytics offers solutions designed to help companies maximize the value of their health care data by using a risk-based approach to deidentification of data. The solution ensures the data value is maximized while complying with various regulations. The company offers software giving companies a consistent approach to de-identifying data and providing risk determination of the company’s data based on how the company intends to use it. Regardless of the format of the data, the software lets companies create automated and repeatable processes for de-identification as the amount of data grows within a company.
-
Privacy Associates International
PAI helps organizations address their privacy needs – from program design to maintenance and audit – in a practical manner. Organizations differ in terms of goals, culture, size, complexity, staffing, applicable legal requirements, and state of privacy program implementation. Because PAI recognizes these differences, our approach to working with each client differs. Rather than “selling” some static one-size-fits-all program, we tailor our services to meet your specific needs. We have a network of Certified Information Privacy Professionals and privacy specialists in various subjects, disciplines, and geographic areas that work with PAI on an as-needed basis. This allows us to bring exactly the right resources to bear on your situation without having to charge rates reflective of companies with large permanent staffs.
Our areas of expertise include:
- Risk Assessments.
- Cross-Border Solutions.
- Program Development.
- Virtual Privacy Office.
- Data Breach Avoidance & Mitigation.
- Educational Services.
- Independent Compliance Verification.
-
Privacy Bee
Privacy Bee is a proactive privacy management platform for consumers. We scrub personal data from corporate marketing databases by handling data deletion and opt-out requests on behalf of consumers. This shrinks their digital footprints and reduces the chances that their stale data is hacked or stolen.
-
Privacy Company
Privacy Company was founded in 2014 and became one of the largest privacy consultancy firms in the Netherlands. Privacy Company is committed to providing practical solutions and an easy approach to all privacy related topics, under the motto: Making Privacy Easy. We advise various large and small companies and government institutions. Our team consists of a diverse group of people, driven by the passion to make privacy work in daily practice. We love working on privacy innovation.
We are happy to help you with our privacy products and services. Our services include GDPR consultancy and implementation projects, Data Protection Impact Assessments and DPO as a service. We offer software and products to make your privacy organization less time consuming. For example with our privacy e-learning, our privacy management software (privacynexus.io), and the Privacy Kit (up to 30 ready-to-use privacy templates).
-
Privacy Engine
Sytorus is one of Europe's leading data privacy companies located in Dublin, London, Stockholm and Frankfurt, along with supporting customers in 32 countries. We deliver a range of services aimed at supporting organizations that wish to achieve and maintain a high level of compliance aligned to the European data protection legislation.
-
Privacy Experience Agency
The Privacy Experience Agency is a specialized consultancy dedicated to privacy and data protection services. We offer a comprehensive range of services, including consumer insight/research, privacy innovation, user experience and service design, and strategic communications and digital trust advisory.
Our research capabilities encompass qualitative and quantitative research methodologies. We delve into the privacy behaviors, attitudes and emotions of data subjects, examining their perspectives on data protection. Our team measures consumer perceptions of various privacy programs, crafting diagnostic metrics and reports that provide clear insights. Additionally, we apply behavioral science principles to tackle user data protection challenges, offering a unique approach to privacy issues.
At PEA, our goal is to enhance privacy experiences. We meticulously design privacy journeys and touchpoints that not only comply with regulations but also align with customer expectations and business objectives. Through our proprietary data and privacy proposition development process, we elevate the data value exchange, ensuring that both organizations and their users benefit.
Furthermore, our expertise lies in crafting communication strategies that build trustworthy privacy brands. We create deep understanding of data subjects, and the wider set of external stakeholders, ensuring that every interaction is grounded in purpose and transparency.
We Are Pea.
-
Privacy International
We are a London-based charity. We investigate the secret world of government surveillance and expose the companies enabling it. We litigate to ensure that surveillance is consistent with the rule of law. We advocate for strong national, regional, and international laws that protect privacy. We conduct research to catalyse policy change. We raise awareness about technologies and laws that place privacy at risk, to ensure that the public is informed and engaged. To ensure that this right is universally respected, we strengthen the capacity of our partners in developing countries and work with international organisations to protect the most vulnerable.
-
Privacy International, LLP
Dedicated resources to assist clients in development or enhancements of their privacy and data protection programs. We specialize in areas such as GDPR, HITECH and GLBA preparation, defining metrics and measurements based on your company's operations, locations and type of personal data collected.
International data transfers are a function of many business operations, Privacy International, LLP has extensive experience to achieve or enhance organizational compliance and improve the customer experience. Our methodology is that every client shall be treated with integrity, dedication and awareness of the business goals.
-
Privacy Laws & Business
The Privacy Laws & Business Recruitment Service has been running since 1997 with an unrivaled success rate. It was established in response to clients who were unable to source specialist data protection and privacy professionals through generalist recruitment agencies. Now many organizations with data protection and privacy vacancies come straight to Privacy Laws & Business.
Privacy Laws & Business specializes in placing skilled data protection and privacy staff in permanent or contract positions, including short term projects. We can recruit for all types of vacancies ranging from global, Europe, Middle East & Africa and UK roles.
Having established a leading presence in the data protection and privacy recruitment market we offer an unrivaled service to our clients. We have become market leaders because unlike other recruitment agencies, we understand data protection and privacy.
-
Privacy Management Partners
Privacy Management Partners is a leading privacy management bureau in The Netherlands, founded by top privacy professionals from Dutch industry. PMP supports organizations in the public, private and non-profit sector that aim for compliance with data protection legislation, especially the EU General Data Protection Regulation.
Our clients have instant access to expert knowledge of data protection law and practice. Our pragmatic approach and methods ensure full accountability. We help you to deal successfully with aspects like data mapping, DPIAs, data processing records, privacy by design and breach notifications. We also provide cost effective data protection officer solutions.
-
Privacy Partnership
20 years experience in data privacy consulting, training and outsourced data privacy officer services for European businesses, government and charities. Smart Privacy technology platforms for outsourced DPO services and in house privacy teams.
-
Privacy Ref
Privacy Ref provides our experts to assist with the development of new and existing policies. If you need an advisor to guide your team to success or require subject-matter expertise occasionally, our Privacy Office as a Service can meet your needs.
Privacy Office as a Service
Privacy Ref offers you the ability to access experienced, IAPP-certified subject matter expertise when you need it. Our team supplements your current privacy program with just-in-time information, resources, expertise, and analysis. Whether you need resources for a specific project, research assistance, or a temporary privacy officer, Privacy Ref can helpOther Privacy Services
Privacy Ref has experienced privacy professionals. Whether for an extended project or a short assignment we can provide assistance on an hourly or fixed rate basis.
-
Privacy Rights Clearinghouse
PRC is a California nonprofit corporation with 501(c)(3) tax exempt status. Our mission is to engage, educate and empower individuals to protect their privacy. We identify trends and communicate our findings to advocates, policymakers, industry, media and consumers.
-
Privacy Solved
PrivacySolved is a global data protection, GDPR, privacy, technology and cyber security compliance business. Much of our work extends from our core U.K., EU and U.S. expertise. We help clients to assess risks, project manage new technology, navigate global data protection rules, master the data breach life-cycle, security-review supply chains, liaise with regulators and enable business to flow. We advise, solve problems and deliver projects for client from a wide range of sectors in the UK, EU, Europe, USA, Asia Pacific and internationally. We have advised financial services, retail, advertising, marketing, manufacturing, pharmaceutical and e-commerce sectors.
Key Services include:
- Data Protection Officer As A Service (DPOaaS) / Outsourced Data Protection Officer.
- Special Projects Data Protection Officer (SPDPO).
- Data Protection Impact Assessments (DPIAs) and Privacy Impact Assessments (PIAs).
- GDPR Gap Analysis, Data Mapping and Compliance Support.
- Data Protection and GDPR Consulting and Corporate Training.
- Data Protection and Privacy Legal Support.
- Data Protection, Privacy and GDPR Programme Review and Management.
- Data Protection Regulator Point of Contact.
- Policy, Procedures, Records of Processing, Privacy Notices and Contract Reviews.
- Personal Data Breach Preparation and Response.
-
Privacy Toll Free, LLC
We provide privacy request management for small, medium and enterprise clients, including the 866-I-OPT-OUT toll-free number service and "Do Not Sell My Personal Information" functionality required for the California Consumer Privacy Act.
We help businesses to collect consumer privacy requests through data subject access requests and manage them in a secure dashboard that helps track and demonstrate compliance, assists with responding to requests, and reminds businesses of deadlines.
In addition to the shared 866-I-OPT-OUT privacy hotline, we also offer dedicated toll-free numbers. We provide telephone voice prompts that work by default and are also customizable for each brand. We also provide an interactive web form privacy request.
-
Privacy Tools
Privacy Tools is a privacy tech that aims to transform the way companies protect and manage the privacy of personal data. We developed a privacy program platform that works as a service on the cloud to make the compliance program faster. Based on blockchain, the platform offers a proof of consent, cookie audit and artificial intelligence for data mapping and discovery.
-
Privacy Virtuoso Advisory LLP
We are a privacy management services offering company based out of India. With a strong and reliable global network of privacy professionals including technology, legal and regulatory compliance consultants. We operate on a very unique and cost-effective yet robust model known as Open Group Consulting Service. This allows our clients to tap talent and resources from their project establishments on a Requirement Oriented Engagement Model, hence they pay only for engagement or of preferred through a retainer agreement.
We provide privacy risk advisory, training and assessment as core services and, for our premium services, we offer DPO services and privacy consulting for CSR and BCP/disaster recovery.
-
Privacy1
Harpocrates™ is an infrastructure service that enables your business privacy compliance and automates your users’ privacy settings, such as subject access requests and right to be forgotten. It supports your business with clear and predefined workflows and audit trails. Internal access to data can be granted and retrieved with a click, based on predefined roles everyone in the organization will get the correct access and can rely on their right to use the data they have access to. The service can be integrated with any email service and thus facilitates notifications via email.
-
Privacy4Cars
Privacy4Cars’ patent-pending process is the first app designed to intuitively and rapidly delete PII from vehicles while building a compliance log. Our mobile app is available for free on the App Store and Google Play. We offer education and consulting on vehicle security, privacy and technology.
-
PrivacyCheq
PrivacyCheq allows privacy officers to test a variety of different user flows and strategies to best obtain the consent of users in order to comply with the General Data Protection Regulation. Privacy offices can use these different methods to discover the best compliance method for websites, apps and devices. Users of the solution can choose between allowing non-identified consent, or to require identification. ConsentCheq also has features to help companies comply with COPPA and the GDPR children’s privacy rules. The solution offers a consent dashboard, acting as a common privacy management interface for any business using the ConsentCheq cloud service.
-
privacyfunctionaris
Privacyfunctionaris.com is a small organization specialized in providing targeted privacy law advice for small and medium businesses. Privacyfuncationaris.com is located in the Amsterdam area and has certified employees familiar with the GDPR, EU-U.S. Privacy Shield models, privacy statements, contracts in and outside the EU, processing/outsourcing agreements and is able to do risk analysis data impact assessments.
-
Privacylab
Privacylab is a web solution to manage privacy compliance for GDPR and demonstrate accountability. Privacylab uses wizard procedures to save time and avoid errors. It provides the user with: information reports for each category of data subject; consent management, automatically created when provided by law; appointment of processors and other personnel, customized with tasks for each employee; organizational chart of tasks and competences of privacy; appointment of sytem administrator; and records of processing activities. Other features: External processing, risk-gap analysis and improvement plan, security measures taken, recovery data plan.
-
PrivacyPerfect
PrivacyPerfect provides a natural flow between the four administrations required by the GDPR: data protection impact assessments, prior consultations, processings (including transfers), and data breaches (including breach notifications to supervisory authorities and data subjects). The software supports meeting controller and processor obligations, fulfilling data subject rights, and complying with supervisory authorities’ requests. It enables your organisation to enter and assess relevant privacy records and promote them through the “privacy funnel” while monitoring workflow.
-
PrivacyPilot
PrivacyPilot offers the highest level of data protection compliance. Ever new and increasingly complex data protection requirements call for a powerful yet easy-to-use solution: PrivacyPilot.
Data protection requirements are becoming increasingly complex and unmanageable. How can organizations avoid an incalculable risk of claims for damages and fines in this data protection jungle and at the same time concentrate on their core business? The answer is PrivacyPilot, the forward-looking solution for data protection requirements:
• Full compliance with legal and data protection regulations.
• Structured and therefore LegalTech-capable recording of all data protection-relevant information.
• Minimization of liability risks and financial losses.
• Ensuring data protection and compliance even with complex processes and the highest requirements.Use PrivacyPilot to ensure compliance with legal and regulatory data protection requirements, including the Standard Data Protection Model 3.0 and the German Federal Office for Information Security IT-Grundschutz-Compendium. PrivacyPilot offers resource-saving documentation and intuitive operation. PrivacyPilot's unique methodical design protects you from fines, claims for damages, reputational damage, warnings and management liability.
-
PrivacyPioneer
PrivacyPioneer is committed to providing a entire life cycle solution of privacy compliance. An automatic data discovery tool combined with a real-time dataflow map that can help organizations find and manage personal data more efficiently in a complex data storage environment. PrivacyPioneer offers organizations the ability to improve management and workflows for data discovery, data mapping, privacy impact assessments, data privacy impact assessments, data subject access requests and consent management. The platform provides customizable interfaces with pre-defined templates and workflows that help organizations to minimize the processing costs and risks.
-
PrivacyTe.am
PrivacyTe.am is an Israeli consultancy firm, providing comprehensive privacy compliance solutions, including:
- GDPR readiness programs.
- DPO services.
- Staff trainings on privacy and GDPR compliance.
- Liaising with Data Protection Authorities around the globe.
- Periodical reviews of your organization’s data protection policies, vendor audits, DPAs and Data Protection Impact Assessments.
- Assisting Israeli companies in interactions with the Israeli Privacy Protection Authority.
Our services cater to leading Israeli and global (tech) companies and law firms, providing both international and local privacy expertise.
-
PrivacyWorks Consulting Inc.
Our PrivacyWorks consultants work closely with you to understand your unique business needs and to provide privacy-related advice and assistance to move your business toward its target state. PrivacyWorks has developed detailed assessments against which you will be able to measure your company’s readiness to comply with GDPR. Whether your business is large or small, these assessments will prove beneficial not only to your internal stakeholders and European counterparts, but also to your customers by being able to demonstrate that you take privacy seriously and are prepared for these strict new requirements.
Our areas of expertise are:
- Privacy Advisory Services.
- Privacy Impact Assessments (PIA).
- Privacy Program Development.
- Privacy Training.
- Privacy Policy.
- Privacy Breach Management.
-
privado.ai
Privado helps data protection officers and privacy teams to get visibility on the use of data, identifies privacy risks and fulfills requirements of privacy laws. Privado was built to streamline and automate the manual process and spreadsheet overload that privacy teams struggle with. Leverage our pre-built assessment templates and out-of-the-box values to collect information from stakeholders inside the company to automatically generate record of processing activities reports, visualize data flows. Powerful automation enables privacy teams to transfer ownership of privacy tasks to stakeholders in your organizations. Easily prioritize work with advanced analytics and generate privacy key performance indicator reports for management.
-
Privaini
Privaini is a technology company that specializes in developing an artificial intelligence-powered privacy profile tailored to businesses navigating the complexities of global regulations within the dynamic business ecosystem. Employing an "outside-in approach," Privaini examines external influences to provide customized solutions grounded in real-world scenarios.
The company's privacy profile is designed to address the evolving regulatory landscape by incorporating insights into industry-specific laws and consumer expectations. By harnessing AI, Privaini offers personalized guidance to businesses seeking to optimize their privacy practices and adhere to international privacy standards.
Backed by a team of data privacy and technology experts, Privaini is dedicated to assisting organizations in fostering trust with customers and stakeholders amid the challenges of today's interconnected business world. With a commitment to advancing privacy and data protection, Privaini aims to support businesses in achieving compliance with global regulations while navigating the complexities of privacy in a digital age.
-
Privally
Privally develops solutions that support consultancies and other organizations in their compliance with Brazil's LGPD and the EU General Data Protection Regulation. Our first product, CCM Cookie Consent Manager, deals with the web presence of the company, managing cookies, tags, inputs and privacy policies. The others are being made available to the market according to the phases of implementing a Data Protection and Privacy Management System, starting with an Assessment Tool and arriving at a privacy manager that limits and/or registers the access to all personal data (EPI — Enterprise Privacy Manager).
-
Privaon
Privaon provides solutions in the areas of Data Protection, Privacy Risk Management, Privacy Engineering and GDPR compliance.
Privaon’s cloud-based Privacy Assessment Tool allows for scoping of current privacy risk- and compliance levels, helping you with managing privacy and reducing risks. The criteria evaluation lets you know the gaps in your current privacy management practices, allowing you to set control measures. A detailed report is composed of your current privacy compliance stats and risk levels.
Privaon’s GDPR e-Learning training provides an interactive way to train your entire staff requiring an introduction to GDPR. The training consists of lectures, videos and exercises.
-
Privaon
Privaon manages its customers’ privacy challenges and offers tools and services to implement General Data Protection Regulation requirements. We believe that privacy is not an obstacle for business but a competitive advantage when implemented correctly. That is why we provide services that help our customers meet both their business needs and regulatory requirements efficiently. We call this Privacy as a Service.
-
Privasee Ltd
Privasee Ltd is the UK subsidiary of Privasee EU an exciting and innovative GDPR and Data Protection compliance solutions provider. GDPR is a favourite buzzword for many vendors and consultants, but where are the practical plans? Privasee has a great answer. A critical gap that Privasee intimately understands and fills, with expertly designed Privacy Impact Assessment tools, templates and processes, partnered with flexible SCORM compliant training. Most importantly, Privasee solutions enable you to quickly show concrete progress towards compliance, but also flex your approach as UK Data Protection requirements and GDPR benchmarks crystalize.
-
Privcore Pty Ltd.
Privcore’s team with 40 years of combined experience helps business and government make privacy core business so they can deliver services with the trust and confidence of customers and citizens.
Annelies Moens, CIPT, FAICD, CMgr FIML, a privacy professional practicing since 2001, founded Privcore. She has been instrumental in shaping and building the privacy profession in Australia and New Zealand.
Privcore provides the following services:
- Privacy and algorithmic impact assessments.
- Privacy health checks.
- Development of privacy management frameworks and maturity models.
- Privacy research, training and presentations.
- Privacy-by-design advice.
- Data breach prevention and recovery.
- APEC CBPR implementation and advice.
-
Privintelligent Solutions LLC
Our Company follows a simplified approach in providing a complete portfolio of data protection (GDPR) compliance services and externalized DPO services.
More specifically, we provide:
Compliance Services
- Data mapping and GDPR record-keeping.
- Gap analysis.
- Remediation, Compliance Action Plan and implementation.
Data Protection & Privacy Documentation
- Privacy policies and statements.
- Standard operating procedures (SOPs).
- Contractual templates.
- Security measures (technical and organizational).
Data Protection Officer Dedicated Services
- Compliance audits.
- Training and awareness.
- DPA inquiries and data subject requests.
- Support for privacy by design and default, implementation of security measures, DPIAs, and contracting processing activities.
-
Privitar
Privitar has two different products designed to protect sensitive data. Its Publisher tool takes sensitive data and applies a privacy policy to create an anonymized copy, which can be used to investigate analytics and data sharing between trusted parties. The Publisher encrypts identifying fields in a dataset and distributes the rest of the data in order to stop re-identification in linkage attacks. Its Lens product is an interface allowing analysts to perform analytics queries of data, wile preventing direct access to sensitive data. It has access control, while all queries are audited and logged.
-
Proceed Data Protection Services Ltd
Proceed Data Protection Solutions specialize in providing data protection services to clients who use SAP software. Proceed Data Protection Solutions brings together a team of Proceed SAP experts, data protection consultants, legal practitioners and cybersecurity experts. We offer a range of services including legal surveillance, data protection officer as a service and chief information security officer as a service; enhanced services are available on a 24/7/365 basis. In addition to structured services we also offer a number of stand-alone compliance activities.
-
Proliance
Proliance offers data protection solutions. Our offer includes DPO-as-a-service packages, EU-representative services, and the privacy management software Proliance 360 for internal DPOs. Thousands of companies already trust our products and expertise. All services are offered based on a fixed monthly fee. The team of privacy experts consists of more than 65 industry specialists. Our German brand, datenschutzexperte.de, is one of the most visited privacy information gateways in Germany.
-
Promontory
Promontory offers a wide range of Privacy Managed Services, combining Promontory’s deep experience and expertise with dedicated resources providing dedicated support, including for:
- DPIAs and PIAs.
- Register of data processing activities.
- Third-party relationship management.
- Data subject rights management.
- International data transfers.
- KPI / MI dashboard reporting.
- Policy and procedures maintenance.
- Intranet maintenance.
- Privacy Shield compliance assurance.
- Data mapping.
- Privacy compliance assessments and Internal audits.
- BCR application and maintenance.
- Monitoring of codes of conduct/certifications.
- Training.
- Privacy crisis and incident management.
- Shadow regulatory audits.
-
ProofPoint
Proofpoint offers automated content analysis to help companies discover sensitive information and track data across the network. The analysis helps a company discover where sensitive data is located and the data that is most at risk for exposure. The Data Discover tool also provides organizations with data visualization and heat maps locating where the data is most at risk. Companies can fix compliance breaches in real time and revoke access to any unwanted users. Proofpoint also offers a Threat Response platform to help companies resolve threats faster by automatically alerting a company to incidents, while collecting and comparing data forensics.
-
Proskauer Rose LLP
Proskauer is a recognized leader in privacy and cybersecurity law. Our practice leaders have specialized in this area for more than 20 years, as far back as the practice area has existed. We assist clients in all industries around the world with the "A to Z" of privacy and data security–related legal services. Our practice is one of the few that offers the deep data protection expertise of highly specialized lawyers in corporate transactions, compliance, litigation defense, and labor and employment. We have helped numerous companies comply with EU data privacy regulations, as well as other similarly complex non-U.S. data privacy regulations. We conduct data privacy training for employers and our expertise in employee-related data privacy challenges spans the globe. Our leadership in this area and our reputation for providing pragmatic, business-oriented advice make us the ideal choice to assist businesses with legal needs in this area.
-
ProtDataMx
- Privacy and data protection training tailored to employees and staff of private organizations to comply with the GDPR.
- Development of data protection compliance programs, policies on information security and procedures to comply with the GDPR and national laws on data protection.
- Drafting of privacy risk assessments under the GDPR.
- Drafting, negotiation and follow up of instruments to transfer personal data to countries located outside the EU (model contractual clauses, binding corporate rules).
- Drafting and negotiation of complex contracts involving outsourcing activities involving personal information.
- General counsel on IT Law (e-commerce, copyright, cybercrime and cyber security).
- Strong knowledge and practice of global data protection laws and development of proven and effective strategies to comply with data protection laws and regulation and standards on information security.
- DPO as a Service. External counsel to companies, data controllers and data processors for the implementation of a privacy program within their organization.
-
Protegrity
Protegrity offers an enterprise data security software platform that leverages scalable, data-centric encryption, vaultless tokenization and masking to help businesses secure sensitive information while maintaining data usability. Built for complex, heterogeneous business environments, the Protegrity Data Security Platform provides data security certified across applications, data warehouses, mainframes, big data, and cloud environments. Protegrity helps manage risk, achieve compliance, enable business analytics, and adopt new platforms while maintaining the privacy of customers and employees.
-
Protenus
Protenus’ patient monitoring platform consists of two main parts: The first is the analytics and proactive detection piece, which takes big data, machine learning, AI, and combines it with user workflow, HR data, and other elements to create a second-by-second account of all the activity occurring within an electronic health record. The combination can help determine a user’s normal behavior and help detect any abnormalities. The “forensics and investigation” part of the platform lets electronic health record users sift through patient information in a point-and-click interactive interface, while limiting the amount of false positives.
-
Proteus
Proteus-Cyber Ltd are specialists in Integrated Risk Management software, now including a ground breaking, comprehensive GDPR software toolkit named Proteus®GDPReady™ and our most recent release, Proteus®GDPReady+™, which adds a personal data listener that can find, track and retrieve personal sensitive data for GDPR.
Proteus®GDPReady™ and Proteus®GDPReady+™ fully supports the GDPR process, providing the DPO with a ready-made suite of tools to model business processes, define what sensitive data exists and where it is, and perform multi-phase Data Privacy Impact Assessments. Our Proteus®GDPReady+™ product has the added benefit of a personal data listener to reduce the cost of GDPR.
Proteus-Cyber can also offer organisations Proteus®GRCyber™, a comprehensive digital security application that brings together all your security products under one security framework, systematically testing each and every control deployed, using best international practice.
-
Protiviti
Protiviti is a global consulting firm that delivers deep expertise, objective insights, a tailored approach and unparalleled collaboration to help leaders confidently face the future. Our consulting solutions span critical business problems in technology, business process, analytics, risk, compliance, transactions and internal audit. We are committed to attracting and developing a diverse workforce of professionals that share the common value of collaboration. As an organization, we believe that by teaming together, with each other, and our clients, we can see beyond the surface of changes and problems organizations face in this fast changing world to discover opportunities others might miss and face the future with greater confidence.
-
Purism
Being a social purpose company means doing social good for society before maximizing profits, and that makes us quite a different company indeed — one started because our founder and CEO, Todd Weaver, wanted to change the future of technology so his two growing daughters could participate in a digital society that respects them, rather than exploit them.
Our products are designed from the hardware on up to respect you and your digital life, they come with physical hardware kill switches for your camera and microphone, with all known hardware backdoors completely neutralized and disabled (Intel Management Engine), running a curated freedom-respecting operating system and software applications, for maximum protection. We put your security at the forefront, and our laptops and smartphones will never invade your privacy.
-
Purpose and Means
Purpose and Means provides privacy consulting services focused on formulation and development of bespoke “Privacy Purpose and Strategy,” orchestration of privacy programs, development of privacy management frameworks, and delivery of privacy training — both bespoke role-based courses and IAPP certification courses.
-
PwC
PwC provides industry-focused services for public and private clients. Our experienced staff, combined with our global network, allow us to provide the support you need—wherever you need it, at home and abroad, whatever the size of your organization.
-
Pwnie Express
At Pwnie Express, we are passionate about closing the security gap exposed by the proliferation of wired, wireless and Internet of Things devices across organizations. As this proliferation occurs and organizational expectations of speed and reliability grow, the task of maintaining the integrity of the network becomes an overwhelming challenge. Our vision is to ensure the safety and integrity of critical systems by providing visibility and continuous threat surveillance across a range of devices, environments and locations. We also believe it is important to provide technology that is simple to operate and compatible with existing systems.
-
Qixium
Qixium SDT provides a holistic view of your sensitive data landscape. Based on its central repository with semi-automated discovery and classification providing anonymization, among other functionality, SDT supports GDPR concepts including, maintaining “records of processing activities,” processing agreements, status of mandates, DPIAs, anonymization of data, audit functionality for the right to be forgotten and more.
-
Quarles & Brady LLP
Data privacy and security matters cross multiple areas of the law, from banking to health care to employment law. Because of our national scope and multiple practice areas the Quarles & Brady Data Privacy & Security Team is able to handle both routine and complex matters in an efficient manner. This full-service approach ensures that all your needs are met.
-
QueryPie
QueryPie is a centralized platform to manage scattered data sources and security policies in one place. With the all-in-one solution, data teams can now simplify data privacy regulations while streamlining access management and increasing security. QueryPie is built on modern cloud technology to run on any platform and seamlessly integrate with existing data environments via cloud deployment.
-
Quick Base
Quick Base (formerly QuickBase) provides a cloud-based platform that empowers problem solvers to quickly turn ideas for better ways to work into apps that make their organizations more efficient. For nearly 20 years, people of all technical backgrounds have been using the Quick Base platform to create solutions that streamline processes, capture real-time data, and improve company operations while working in concert with existing IT systems.
-
QuintessenceLabs
QuintessenceLabs’ suite of Data Security technology, products and solutions protect digital information in-transit, at-rest or in-use. We harness unique quantum science properties to strengthen the foundation of your security, combined with advanced key and policy management and encryption capabilities.
Our Security Products integrate seamlessly into existing systems, while building a strong foundation for future data security systems.
-
RadarFirst
With Radar, organizations make consistent, defensible breach notification decisions in half the time. The automated incident response management platform profiles and scores privacy and security incidents, providing an objective risk of harm analysis. Radar’s patented law engine provides clear breach notification recommendations based on U.S. state, federal, and global breach notification regulations, as well as contractual notification obligations. Real-time reporting and benchmarking allow organizations to compare incident response metrics to those of their peers across industries. Radar’s integrations with established platforms, such as ServiceNow, connect privacy with security and IT to speed time to incident resolution. Find out more at radarfirst.com.
-
Radware
Radware's mission is to be at the forefront of technology/service advances so our customers can be at the forefront of their industry. Our denial-of-service-attack protection, web application firewall, application delivery and load balancing solutions optimize business operations, minimize service delivery degradation and prevent downtime.
-
RealCGR
RealCGR provides integrated tooling in compliance, governance and risk management.
We promote governance as core-business processes instead as of a technical matter. Thereto, we combine services of the highest standards with the use of simple, intuitive, methodical tools. Using RealCGR tools means enabling enterprise-wide resilience. Two tools regarding GDPR are available.
RealDPG is an integrated data protection management system that creates the ability/agility to master data protection in a concise manner.
RealDPG provides a practical path and method combined. Practical data processing sheets, risk analysis, maturity and compliance proofing, rights and freedoms management, breach management, all modules one need are on board like:
- Methodic data protection compliance.
- Integrated data protection intelligence.
- Maturity and compliance proofing.
- Rights and freedom case logging.
- Breach management case logging.
- Many more features.
RealBCP is an integrated business continuity management system allowing to comply with known standards and best practices.
- Integrated continuity intelligence.
- Crisis-specific response system.
- BIA modules.
- Business alignment features.
- Three-level testing.
- Guidance and instructions on board.
- Document storing.
- Five functional bridges between BCM and GDPR.
-
RecordPoint
The RecordPoint platform enables enterprise organizations to manage data throughout its life cycle, regardless of the system it originated from. We connect to hundreds of data sources, providing a comprehensive data inventory. The platform provides vital insights, identifies personally identifiable information and uses artificial intelligence for automated categorization and retention scheduling.
The platform empowers organizations to make informed decisions and take proactive measures to strengthen their data security posture. Using the platform, you can track data authenticity and provenance via legal holds and audit trails to safeguard against legal matters and audits. Utilize defensible disposal workflows for data minimization and deletion rights compliance. Enhance IT security with clear data insights for improved protection and gain clarity on compromised data in the event of a data breach.
-
Red Clover Advisors
We are a boutique privacy consultancy helping companies comply with the EU General Data Protection Regulation, California Consumer Privacy Act and other privacy laws. We have a specialty in digital marketing privacy. Our services include gap and maturity analysis, data inventory, strategy session on privacy issues, custom privacy notices and policies, cookie consent strategy, digital marketing compliance, privacy impact assessments, third-party assessments, individual rights implementation and testing, online or in-person team training, and operationalizing privacy so it's part of the daily activities of the company. Red Clover Advisors also offers fractional or virtual chief privacy officer services where companies get the value of an in-house privacy officer without the hefty investment of a full-time salary and employee benefits.
-
Redgrave LLP
Redgrave helps clients address privacy and data security challenges. This includes helping corporations not only comply with domestic requirements, but also navigate overlapping and sometimes competing international legal requirements. We work with clients to develop protocols for privacy issues in litigation and investigations, privacy compliance, and dealing with incident and breach responses. We also counsel clients when situations pose significant data security and privacy risks.
-
Redscan
Redscan is an award-winning cybersecurity company with years of experience helping businesses to protect themselves against hackers and criminal activity. Specializing in proactive cybersecurity measures, the company consists of a team of experts with expert knowledge in everything from Managed Detection and Response and SIEM to penetration testing and red teaming.
The company is based in London and utilizes state-of-the-art software, alongside highly specialized experts in all aspects of cybersecurity to provide a comprehensive range of services to businesses across the country.
The team can provide personalized services based on the specific needs of the business — there is no silver bullet when it comes to cybersecurity, but Redscan helps companies to maximize and optimize their defenses. Providing an extremely high level of customer service, the company has built up a reputation for being able to offer customized security packages tailored to the needs of the business.
If your business is looking to upgrade its cybersecurity solutions, Redscan can help. Visit the website today to learn more about what they can offer to businesses.
-
RedSeal Networks
Only RedSeal’s network modeling and risk scoring platform models your entire hybrid data center of public cloud, private cloud and physical network so you can better prepare for and contain problems within minutes and not days.
With RedSeal:
- You’ll be able to validate your security posture and your compliance.
- You’ll accelerate the investigation of incidents and vulnerabilities.
- And, with one comprehensive network view, your teams will be more productive.
-
Redstone Consulting SA
Redstone Consulting acts as a one-stop shop for data privacy regulations compliance. We provide advisory on cybersecurity and data privacy, as well as DPO services.
-
Reed Elsevier
RELX Group is a world-leading provider of information and analytics for professional and business customers across industries.
Our goal is to help our customers make better decisions, get better results and be more productive. We do this by leveraging a deep understanding of our customers to create innovative solutions which combine content and data with analytics and technology in global platforms. These solutions often account for about 1% of our customers’ total cost base but can have a significant and positive impact on the economics of the remaining 99%.
The Group serves customers in more than 180 countries and has offices in about 40 countries. It employs approximately 30,000 people of whom half are in North America.
-
Reed Smith
In an age of perpetual innovation and digital change, protecting your data is critical. Reed Smith offers a full spectrum of data privacy and security services with a truly global network of support. Our lawyers have advised on compliance and risk management across this area’s cutting-edge issues, quite extensively. We perform due diligence; assess the risk in your transactions; assist in product development, deployment and monetization; guide your cybersecurity efforts; respond to data theft, unauthorized access and ransomware attacks; and defend bet-the-company litigation.
-
REVI-IT
Consultancy in privacy, assessment, audit and declaration of compliance within EU privacy directive, ISO 2700x-standards and more. REVI-IT is a state authorized accounting firm, specializing in audit work within IT.
-
Richter
Richter is an independent firm focusing on:
- Fraud risk management
- Transaction advisory services
- Risk advisory
- Transition planning
- Business advisory, crisis management and restructuring
- Digital transformation
- Enterprise group
- Cybersecurity
- Performance improvement
- Litigation support
- Tax
- Business valuation
-
RightCue Consulting Services
RightCue offers professional services for:
- Virtual data protection officer service.
- EU General Data Protection Regulation compliance as a service.
- Data flow mapping and inventory.
- Leadership and training for operational data protection teams.
- Consent management.
- Subject access request management.
- Data security and breach notification process.
- Vendor management and data transfers.
-
Rincon Security LLC
Rincon Security provides cybersecurity and privacy advisory services.
-
Risk Based Security
Incorporated in 2011, Risk Based Security offers a full set of analytics and user-friendly dashboards designed specifically to identify security risks by industry.
-
risk3sixty LLC
- GDPR readiness assessment and implementation services.
- GDPR strategy consulting services.
- GDPR policies and procedures.
- Internal audit and assurance services.
- DPO as a service.
- Data protection impact assessments.
- Interpretation and practical implementation of GDPR regulatory requirements.
- SOC 2 reporting.
- Privacy Shield.
- Information security consulting (i.e., ISO 27001).
-
RiskIQ
RiskIQ is the leader in digital threat management, providing the most comprehensive discovery, intelligence and mitigation of threats associated with an organization’s digital presence. RiskIQ allows enterprises to gain unified insight and control over web, social and mobile exposures. Our platform combines advanced internet data reconnaissance and analytics to expedite investigations, understand attack surfaces, assess risk and take action against digital threats.
-
Riskpro
Riskpro India understands the growing importance of data privacy and protection in India and globally. In order to assist companies in conforming to each country’s data privacy regulations, Riskpro India offers various services for data protection and privacy adhering to the EU General Data Protection Regulation, India’s Personal Data Protection Bill, Data Security Council of India’s Data Privacy Framework and other regulations.
Our services include:
• Gap Assessments: Highlight gaps in your policies/processes and suggest an effective data privacy management plan in accordance with required regulations.• Framework Set-up: Define and/or implement a data protection governance framework and policies in accordance with required regulations.
• Documenting Procedures: Define procedures per the applicable regulations to ensure all controls are well-documented.
• Regulatory Updates: Define/review procedures to ensure updates in the regulations are identified and updated.
• Compliance Audits: Conduct compliance audits to confirm the framework is defined and controls are working appropriately in accordance with the regulations.
• Training: Online or in-person training on regulatory requirements and highlighting the importance of employee duties while handling personal/sensitive data.
• Third-Party Risk Assessment: Provide assurance about adherence to the applicable regulations by your third parties and suggest a mechanism to identify and rectify potential third-party data breaches timely.
-
RISMA Systems
RISMAgdpr is a GDPR software platform designed to help organisations comply with data privacy regulations whether you are a small, medium-sized or global. Even if you are not an expert in the requirements of the regulation, you will have success when implementing GDPR in your organisation. The solution is developed by RISMA and the Danish law firm, Plesner. The software guides you through the jurisdictions and provides a platform with structure, data mapping, tasks and GAP-analysis. The solution offers dashboards, metrics and reports for companies to track their progress and the management will have a full overview of every process.
-
RLI Corp.
RLI is a specialty property and casualty insurance and surety bond company. We help people and companies safeguard their assets by partnering with them to navigate the world of insurance and risk.
-
Robert Jason Cronk, Esq.
A niche law firm catering to small and medium enterprises and nonprofits, we are focused solely on privacy and emerging technology. Services include privacy policy/notice drafting, vendor/client data processing agreements drafting and negotiations, international data transfers, standard contractual clauses, privacy shield applications, and other privacy-law-related matters.
-
Robinson & Cole LLP
Data privacy and cybersecurity affects all businesses and industries. To handle this complex area, Robinson+Cole's Data Privacy + Cybersecurity Team brings together lawyers from the firm's various practices. This approach allows us to match just the right resources to our clients' specific needs.
-
Ropes & Gray LLP
Ropes & Gray’s privacy & cybersecurity practice has long been ranked as a leader by Chambers USA, Chambers Global and The Legal 500, and has been named a “Privacy & Consumer Protection Group of the Year” by Law360 four of the last six years. The firm’s emphasis on cross-practice group and cross-office collaboration enables us to bring in-depth knowledge and experience to the legal and business needs of clients across industries, with a particular focus on the financial services/asset management, health care, life sciences, banks and investment banks, and colleges and universities. The practice helps clients manage the full array of issues and matters involving privacy and cybersecurity law.
-
Rouleur Consulting
Rouleur Consulting provides a broad range of consulting services as part of our approach to practical data management solutions. We recognize the operational challenges that organizations face when developing a program that protects their reputation and customer/stakeholder trust. We offer solutions that are scalable and consistent with the unique business needs of your organization. We help organizations implement their privacy solutions and assist with implementation of practical strategies and business integration. Some of the areas where we provide advice and support are:
- Data governance
- Benchmarking
- Risk management
- Breach management
- Records management
- Outsourcing and vendor management
- Contracting to maintain control
- Other privacy risk-related areas
-
Rsam
Rsam helps organizations quickly meet their risk and compliance goals, even as requirements are always changing. Our enterprise software platform uses a relational architecture and captures data in a single, centralized repository. Unlike other systems, we don’t hardwire dependencies. Instead, the Rsam platform is built to adapt and puts the user in control. Gone are the days of endlessly retrofitting a solution or failing to get it off the ground. With Rsam, customers can have a baseline up and running in 30 days and iterate from there.
-
Safe-T
Using SDP infrastructure, Safe-T allows exposure and access to applications, services and networks only after assessing trust, based on policies for an authorized user, location and application. Safe-T protects organizations from data exfiltration, leakage, malware and ransomware. Safe-T® protects and secures your data and puts you in complete control of who sees the data and how the data is accessed and exchanged. We make your data completely invisible to the outside and inside the world and only available to the right people, while transparently removing the element of human error and threats
-
Safeonline LLP
Despite the common misconception, cyber insurance is not solely for tech- or internet-intensive companies. In fact, most companies would benefit from a cyber insurance policy, including any that rely on a system or network for their business to operate or to derive income; have a presence online; deal with highly confidential intellectual property; or store, transfer or process sensitive data. Safeonline’s clients range from retailers, financial institutions and education entities, to not-for-profits, manufacturers and lawyers.
-
SAI Global
SAI Global offers a data privacy solution as part of its SAI360 integrated risk management software platform. The data privacy offering is an out-of-the-box software solution that includes GDPR templates that help organizations manage and comply with GDPR requirements, including subject rights, record keeping and breach management.
Our GDPR solution was designed based on industry best practices, such as ISO/IEC 27001:2013 and BS10012:2012. As highlighted within the GDPR, it uses a risk-based approach toward compliance in line with ISO 31000, with preconfigured content, workflows and reports.
SAI360 serves as a single point of truth for a robust GDPR compliance program.
-
Salinger Privacy
Salinger Privacy was established in 2004 by one of Australia’s foremost privacy experts.
We offer privacy consulting services, training and publications.
Our privacy consulting services include:
- Privacy impact assessment
- Privacy audit
- Developing privacy-related policies and procedures
We also offer a range of privacy guidance publications including template policies and procedures, checklists, ebooks on topics like de-identification and big data, as well as e-learning and face-to-face compliance training options.
-
SAP
SAP has released three solutions designed to help companies comply with the EU General Data Protection Regulation. The three solutions are SAP Hybrid Identity, which facilitates customer registration and logins throughout an enterprise, SAP Hybris Consent, which notes consumer consent for terms of services, cookies, and marketing communications, and SAP Hybrid Profile, giving an organization the ability to see all of the information related to a customer, including identity information and profile data. The three solutions are available individually, or as part of one package.
-
Sarakinov Consulting Inc.
In engaging SCI with our expertise in information security, privacy and compliance (PCI/SAE 3416 Type II) we work with you to define solutions that are tailored specifically to your business needs.
SCI certified professionals look at the people, processes and technologies in place using a holistic view to protect your business and bottom line. Our analysis will identify the risks, gaps and training in those areas to provide a roadmap for execution or new implementation.
Our engagements have been both private and public sector customers in the delivery of our services.
-
SAS Institute
Before you can provide the high level of data protection needed to comply with regulations, you first need the ability to locate your data and securely access it. With SAS, you can:
- Use a single interface to access and manage your data. Locate data across different systems and networks, identify personal data and start categorizing the different types of data you have – all from a unified environment.
- Provide unstructured and big data integration. Blend and analyze data from many different file types, including data in unstructured or poorly structured formats, such as social media and web log data.
- Get access to audit, monitor and risk reports. Not only can you easily access personal data, but you can also have reports on that data readily available.
-
Satori Cyber
Satori created the first DataSecOps solution, which streamlines data access while solving the most difficult security and privacy challenges. The Secure Data Access Service is a universal visibility and control plane across all data stores, allowing you to oversee your data and its usage in real time while automating access controls. The service maps all of the organization’s sensitive data and monitors all data flows in real time across all data stores. Satori enables your organization to replace cumbersome permissions with streamlined just-in-time data access workflows. It acts as a universal policy engine for data access by enforcing access policies, masking or anonymizing data, and initiating off-band access workflows.
Satori integrates into your environment in minutes by simply replacing the data store URL. Since Satori’s solution is transparent, there is no need to change your existing data flows or data store configuration.
-
Saul Ewing LLP
Saul Ewing Arnstein & Lehr’s team of cybersecurity and privacy professionals works collaboratively to ensure that our clients are supported at all stages and from all angles — from response planning for cyberattacks, to crisis management during an occurrence, to proceeding after a cyberattack or breach occurs. Our interdisciplinary approach means that attorneys in different legal fields — corporate, insurance, intellectual property, labor and employment, white collar, and litigation — provide clients with well-rounded, innovative solutions.
-
Scheja & Partners
Scheja & Partners is one of the leading law firms in Europe specializing in data protection law. With more than 30 lawyers, the company offers a wide range of services in all fields of data protection.
-
Schellman & Company, LLC
Schellman & Company, LLC, is a leading provider of third-party assessment services that review an organization’s controls to meet various privacy laws and regulations, including specific state laws, HIPAA/HITECH, PIPEDA, GDPR, Privacy Shield, GLBA, COPPA, and FERPA. These assessment services include both readiness assessments, which help determine where an organization may have gaps in their control environment and not meet certain legal or regulatory requirements, and attestation reporting, which provides an opinion on an organization’s assertion that the system description is fairly presented and the information security and privacy program adopts essential elements of the law or regulation. Schellman also offers scope validation services for those organizations still trying to get a grasp on how a certain privacy law or regulation applies to their business.
-
Scott & Scott LLP
Most businesses, regardless of size, have to be aware of state and federal laws regarding security and privacy. Knowledge of the law is especially important when a company is experiencing a security incident. Scott & Scott’s incident response team is ready to respond to a data breach affecting a client’s data. Scott & Scott’s attorneys, who are regularly called upon by their peers to speak about privacy laws and security concerns, can also help develop privacy policies that comply with the law and guide employees in the event of a security incident. Our experienced professionals can also work with businesses to manage their vendors and subcontractors to ensure compliance with federal and state privacy laws. For those businesses subject to HIPAA, GLBA or NASD privacy and security rules, Scott & Scott has formulated solutions that make sense.
-
Secnology, Inc.
Secnology combines in its staff enterprise IT experts and experienced security backgrounds. The mission of the company is to provide end-users, managers and experts with the easiest and most powerful solution to manage globally and automatically all data events from their information system. They should be able to do it the way they need, any time they need, without compromising the raw data integrity.
-
Seculert
Seculert’s solution is built upon a cloud-based architecture that combines a number of technologies to provide an automated attack detection platform. It starts with big data collected from an organization’s firewalls and/or proxy devices, combining it with data collected across the Seculert network and proprietary data developed by Seculert’s Research Lab. Data is also collected from Seculert’s Elastic Sandbox. This data is analyzed using advanced data science to identify anomalous behavior. Seculert’s malware experts create profiles and supervised machine learning algorithms that then powers Seculert’s Automated Attack Detection Platform.
-
Secunia
The Secunia Research team is deeply committed to discovering new vulnerabilities, focusing on popular, widely used enterprise and end-user software used by the community. When discovered, these vulnerabilities are always reported to the vendors with whom we work to get the vulnerabilities fixed according to our responsible disclosure policy.
-
SecuPi
SecuPi protects against malicious data exposure and prevents monetary loss across enterprise and web applications. It enables quick and accurate classification of sensitive and regulated data. Our application-server agents analyze sensitive data flows in real-time, detecting malicious insiders and hackers using activity profiling and peer comparison with instant response. Dynamically mask/anonymize/block and apply row-level security, stopping malicious insiders and hackers in their tracks.
Monitor
Monitor all user activity and know who is accessing which data and when.Detect
Detect internal and external threats with sophisticated analytics and risk scoring.Prevent
Prevent access to high-risk applications and protect data by blocking malicious users.
-
Secure Digital Solutions
Secure Digital Solutions (SDS) offers complete data privacy management services. We can help you develop and enhance a robust data privacy program aligned with your organization's business needs and customer expectations.
We go beyond simple privacy compliance by providing expert advice and guidance aimed at fostering trust while optimizing process efficiency and effectiveness. In short, we focus on the business of data privacy by developing practical solutions to complex problems facing chief privacy officers and data protection officer in organizations large and small.
-
Secured Communications, LLC
Developed with former senior U.S. Federal Bureau of Investigation, law enforcement and technology leaders, Secured Communications is standard for fully secure and encrypted mobile communication solutions for enterprise, financial services, health care, education and public safety. Its products are trusted by counterterrorism professionals, public safety agencies and vetted corporations worldwide.
Mercury, powered by Secured Communications, allows users to host secured video conferences, make secured calls, send texts, and share files seamlessly, all within a single interface. Secured Communications views its clients as partners and offers first-class concierge support, in addition to custom services and integrations to help them manage their most sensitive communications and stay in control of vital information.
-
Secureshed
A secure portal solution providing safe delivery of data from small business to enterprise customers.
-
Securesult
- DPO as a service.
- Technical privacy assessment (do you comply with your privacy statements).
- GDPR compliance check.
-
Security Management Resources, Inc.
Established in 1997, Security Management Resources® is a leading woman- and veteran-owned international security and risk management search firm focused exclusively on professional and executive-level positions. SMR has wholly-owned offices in the United Kingdom and Hong Kong and has successfully recruited in more than 60 countries for the world's leading organizations that include more than 30% of the Fortune 100. In addition to Security Executive Recruitment, SMR’s consultative approach supports its clients with capabilities including organizational alignment, talent and market mapping, and transition coaching and mentorship.
-
SecurityHeadhunter.com
SecurityHeadhunter.com is an Executive Search Firm specializing in the recruitment and placement of Information Security and Risk Management talent with clients throughout the U.S.
Whether you are an Employer in need of security talent or a Security Professional looking to develop a confidential relationship with a Security Recruiter, we encourage you to discover how our 10+ years of Security Recruitment experience can work for you.
-
SecurityRecruiter.com
SecurityRecruiter.com specializes in direct security recruiting for Global Information Security, Cyber Security, Corporate Security, High-Level Physical Security, Converged Security, Risk Management, IT Audit, Global Privacy and Global Compliance talent.
-
SecurityScorecard
The Security Scorecard platform is a risk assessment manager allowing an organization to get risk ratings on all of their vendors. The platform allows the organization to monitor those vendors to see if there are any changes in their risk standing. Companies can sort their vendors by their level of risk and find critical vulnerabilities across their entire portfolio. The platform allows companies to receive a breakdown of the categories where their vendors struggle and has a questionnaire to ensure vendors are in compliance with different frameworks. Vendors are invited to fix their troublesome areas, and the platform gives remediation advice to solve any issues.
-
Securonix
Securonix delivers a next-generation security analytics and operations management platform for the modern era of big data and advanced cyber threats.
-
Securys Limited
Securys makes privacy practical for enterprise. We bring legal, cybersecurity and corporate capabilities to help enterprises address all their stakeholders globally, from customers and employees to suppliers and contractors. All our consultants are required to obtain and retain IAPP certifications, giving us an unparalleled concentration of knowledge under one roof.
We help our customers look at all their operations through the lens of privacy, recognizing the importance of data subjects across the whole compliance continuum. Our focus is on putting people first, to win trust and avoid harm, not merely on avoiding fines.
We offer a full range of privacy and cyber services, including privacy audit, ongoing privacy assurance, privacy by design and privacy as a service. We also act as outsourced data protection officer for a number of our clients. We go beyond advisory, offering full implementation support; this is how we know our recommendations really are practical.
We specialize in addressing the complex needs of enterprise customers who face both complementary and competing regulation in different territories and who work at scale and change at pace. We combine global reach with local knowledge.
Securys — privacy made practical.
-
Seers Group LTD
Seers offers a portfolio of comprehensive solutions ensuring compliance & enabling businesses to meet their regulatory requirements with its artificial intelligence solutions. Businesses can book review-based data protection advisors and get online or face-to-face advice. Its GDPR audit and Cyber Secure tools help companies to assess GDPR compliance and give recommendations. Its Cookie X-Ray tool assesses website cookies that break the regulation and advice on how to fix it.
-
Semanoff Ormsby Greenberg & Torchia, LLC
Semanoff Ormsby Greenberg & Torchia builds lasting relationships with our clients. We offer a big-firm approach and attention with a small-firm touch to a wide range of business clients throughout the region and nationally.
When your organization competes in business today, you need a law firm that is both cost-effective and responsive. SOGT meets all of those requirements. Our mix of big-firm expertise and small-firm attention has allowed us to build lasting relationships with a wide range of regional and national clients. Businesses whose needs are likely similar to your own.
-
Senya
Capiible is a data discovery/classification template that allows you to easily identify the Personal Data that exists within your source systems.
In three simple steps:
- Identify all source systems (structure, semi-structured or unstructured), using the template.
- Discover and classify the source system data elements using a target Personal Data Map.
- Develop an understanding of your Personal Data or PII scope across multiple source systems, to decide on next actions to take based on the GDPR articles.
We use Fuzzy Logic to assist with the classification and matching, and Machine Learning to help accelerate the discovery effort.
-
Seyfarth Shaw LLP
Our GPS Team assists clients in analyzing their practices with respect to data collection, use, transfer and retention, including maintaining information in the cloud, implementing state-of-the-art, cutting-edge compliance programs to preserve and protect personal information, and training clients on proper privacy and security practices. Our depth and breadth extend well beyond the U.S., and we offer a cross-border specialization with experience in counseling companies on privacy and security issues throughout more than 150 countries.
-
Sheppard, Mullin, Richter & Hampton LLP
We partner with clients to help them extract value from the data they collect, while identifying and addressing regulatory compliance requirements and ensuring that data is appropriately protected. Our lawyers have experience responding to high-profile data breaches, including state-sponsored attacks, and the regulatory investigations, Congressional oversight and litigation that often follow such incidents. We litigate major privacy and security related class actions. We provide strategic counsel to help companies understand emerging developments in this rapidly changing area of law, particularly with EU data collection and international data transfers. As data becomes more entwined with the enterprise value of businesses, we conduct data and privacy compliance due diligence in connection with mergers and acquisitions and other corporate and strategic transactions.
-
Shipman & Goodwin LLP
Shipman & Goodwin’s Data Privacy and Protection Practice Group assists clients with the critical responsibility of securing data, complying with regulations for the proper use and disclosure of data and responding to breaches and other security incidents.
-
Shook, Hardy and Bacon LLP
Whether preparing companies for new compliance and reporting requirements or helping them through the aftermath of a cyberincursion, Shook, Hardy & Bacon’s Privacy and Data Security Practice always prioritizes the business operations, goals and culture of those we represent. In this capacity, we have worked closely with data aggregation and marketing firms, financial services companies, health care providers, manufacturers, pharmaceutical companies, and other corporations — from startups to Fortune 100 firms — that regularly handle sensitive information.
-
Sidley Austin LLP
Sidley’s Privacy and Cybersecurity practice group offers clients a global and interdisciplinary team of lawyers focusing on: privacy, data protection, information security, Internet and computer law, e-commerce, consumer protection, outsourcing, competitive intelligence and trade secrets, information management and records retention and responding to cybercrimes and network intrusions.
-
Signatu
Signatu is a self-service cloud solution designed for companies to create privacy policies that are compliant with the GDPR. The service does this by offering an online questionnaire asking about the company’s data processing activities. Companies have the option of answering a simple version of the questionnaire, or a more in-depth version. Once completed, the company is given a snippet of code it can use to implement the policy onto their site. Signatu also tracks user consent to the processing of personal data, and maps the data processing activities of the company, both internal and with third parties.
-
Simply Privacy
Simply Privacy is a boutique, specialist consultancy led by three senior privacy professionals with regulatory, government and corporate experience in privacy strategy and operations. We take a pragmatic approach, informed by our significant experience with the privacy commissioner and in the field.
We offer a holistic range of privacy services, including organizational health checks, privacy impact assessments, policy and notice drafting, privacy training, breach management and general advisory services. We also partner with security and user experience professionals to ensure our clients receive all the help they need to get privacy right.
-
Sixtus Compliance
DPO as a service is a complete service for the company that needs a DPO but for any reason wants the position handled by external resources.
The service contains but is not limited to:
- Registration with the Danish data protection authorities.
- Article 30 records of processing.
- Data breach support.
- Audit and validation of existing procedures and creating missing ones.
- Handling data protection addendums.
- Handling data protection impact assessments.
- Advisory on IT processes.
- Advisory on IT tools for compliance and GDPR.
- Yearly audits.
- Support for due diligence and external audits.
- Internal training.
- Our new Sixtus Privacy Scanner can systematically review all files in your company and reveal any personally identifiable data that should have been deleted. In other words, use the software and get explicit knowledge about whether your files with personal data comply with the GDPR or not.
-
Skadden, Arps, Slate, Meagher & Flom LLP
Cyberattack preparedness, coupled with a well-developed and tested Security Incident Response Plan, is essential for minimizing the legal, operational and reputational risk arising from cyber threats. Engagement with outside counsel who know the legal and regulatory landscape and the key areas of potential liability exposure is a critical part of any company’s cybersecurity strategy. The breadth of our skills in cybersecurity and privacy law and the extent of our experience has earned the confidence of our clients to call on us both before and during a cyberattack.
-
Skyflow, Inc.
Founded in 2019, Skyflow is a data privacy vault for customer data. The company was founded by former Salesforce CEO Anshu Sharma and Chief Technology Officer Prakash Khot, who wanted to radically transform how businesses handle users’ financial, health care and other personal data that powers the digital economy.
-
Slalom Consulting
Slalom is a modern consulting firm focused on strategy, technology and business transformation. They help companies tackle their most ambitious projects and build new capabilities. Their three main areas of focus are strategy, technology and transformation.
From cloud-native apps and data pipelines to CRM and collaboration, they’ll help you get the most out of your technology investments while mitigating the risks that come with change. And they’ll make sure your team is prepared to maintain, support and scale your solution.
-
Smartdraw
SmartDraw helps you create over 70 different types of diagrams. SmartDraw contains all the needed data flow diagram symbols and easy-to-use templates that help you get started. Stamp shapes to your drawing area and connect them easily with keyboard shortcuts or intuitive commands located on the SmartPanel to the left of your drawing area.
You can even nest different levels of data flow diagrams by using SmartDraw's hyperlink function.
-
Smith Anderson
Lawyers in our Data Use, Privacy and Security practice use a multidisciplinary approach to provide tailored and strategic data counsel for businesses in all industries. Our expertise merges cybersecurity, regulatory compliance, technology law and licensing, commercial contracting and dispute management, yielding our unique ability to advise clients on all aspects of data management and commercialization. Additionally, our team understands the difficulties that come with operationalizing data compliance and we have significant experience with implementing cost-effective solutions.
-
SoCal Privacy Consultants
SoCal Privacy helps public and private organizations establish a lean, sustainable, legally defensible security and privacy program, including appropriate data governance with clear roles and responsibilities. We work with you to develop data flow maps, inventories and locations and use these to help you identify foreseeable risks. These risks are assessed, controls evaluated for effectiveness and, where appropriate, mitigation plans developed to improve the strength of controls. We categorize
data into sensitivity levels using a risk management approach and help you develop scalable strategies, policies and procedures that match the strength of controls to the data sensitivity level, such as for an enterprise cloud-use case strategy.
-
Socure
Socure offers a B2B anti-fraud and know-your-customer solution. We are a predictive analytics platform that applies artificial intelligence and machine learning to authenticate identities in real-time. This helps our clients to approve more customer applications for services automatically while reducing their fraud rates. In contrast to traditional companies, our solution can provide results for people who traditionally have "thin" credit files (e.g., younger persons, immigrants) and have trouble getting banking or other financial services.
-
Software Diversified Services
Software Diversified Services™ (SDS) develops software for IBM® z/OS®, z/VM®, z/VSE®, and MVS™, while supporting additional distributed platforms for SDS E-Business Server® data encryption. SDS supports more than 25 mainframe products that focus on security, encryption, data compression, performance monitoring, report distribution and client-server applications. SDS also develops, supports and distributes E-Business Server for data encryption and authentication on z/OS, Linux, Unix and Windows® platforms.
-
SoftwareAG
Through Software AG’s business and IT transformation platform, enterprises will have the capabilities needed to manage data privacy, including the ability to achieve data transparency, establish a system for recording processing activities, satisfy the requirements for fulfilling subjects’ rights, and introduce comprehensive data protection management that defines data protection processes. The breadth of Software AG’s product portfolio addresses business process analysis, enterprise architecture management, IT portfolio management and planning, and GRC practices – all to simplify the process for customers to manage data privacy without disrupting other business initiatives.
-
Solidatus
Solidatus provides a web-based application that rapidly maps, visualises and shares the flow of data (including personal data) through the organisation. The platform allows for delegation of the data models and privacy metadata to key data users to rapidly build a global model including DPIA risk assessments. All changes go through an internal approval process, which incorporates version control to provide comprehensive auditing facilities. The data map can also be shared in a read-only form as a whole or in clearly defined filtered views to make it more relevant to the end user enabling clear management visibility, quality, validation; which can also be prove compliance to the regulator.
-
Sophos
We began producing antivirus and encryption products more than 30 years ago. As IT networks grow in complexity, we’re focused on keeping IT security simple and reliable. We know that a proper security strategy must include networks, servers and devices — all devices — managed easily through the cloud.
Our products allow you to secure every endpoint of your network, from laptops to virtual desktops and servers, to web and email traffic and mobile devices. What’s more, securing these devices is made possible through products that fit your precise needs. We ensure your network’s security by providing the one thing no one else can: simplicity.
-
Span Ltd.
Span LTd. designs, develops and maintains information systems based on advanced technological solutions of global IT leaders. With your help and collaboration, we develop long-term strategies for creating a trusted environment suitable for conducting digital business operations and provide support to the organization’s IT structure. Cyber security and data privacy portfolio encompass consulting services in the areas of information security and protection of personal data, directing clients' ICT strategy and compliance efforts with relevant experience in implementing international InfoSec and Privacy standards and vendor best practices, accompanied with proven solutions for e-Discovery, Data Classification, Identity and Authentication Management, Network Security, Advanced Malware Protection, Endpoint Security etc.
Our experts are holders in good standing of a wide array of certificates: CISSP, CISM, CISA, CompTIA, OSCP, PECB CLFE, Intel Security, ISO27001 Lead Auditor; ITIL; PMP; Rapid7, KEMP, Sophos, Symantec, Trend Micro; Microsoft, VMware, Citrix, Apple; Cisco, Check Point, Fortinet, Aruba, Brocade and many others.
-
Spirion
Spirion is the leader in automated data discovery and classification solutions that rapidly secure sensitive personal data with unmatched speed and precision — amplifying your existing security investments with the visibility and control needed to minimize risk, while easily integrating with existing IT security infrastructures. Thousands of customers use Spirion to reduce the sensitive data footprint within structured and unstructured data stores across their networks and in the cloud. Data protection professionals use Spirion to manage their programs while advancing compliance with the world’s most demanding data protection regulations, including the CCPA, GDPR, HIPAA/HITECH, GLBA, and U.S. state statutes.
-
SpotIT
SpotIT has developed an approach to help with GDPR compliance. GDPR requires combined knowledge in legal, IT and organizational areas. Our knowledge of the regulation in combination with expertise in the various areas gives each organization the necessary capacity to make their GDPR plan a success. Our data protection team is highly certified and experienced in performing complex GDPR projects.
Our compliance program involves the following services:- Awareness training for end-users, management and IT.
- GDPR audit.
- GDPR roadmap.
- Support in GDPR implementation.
- GDPR monitoring.
- Data protection officer as a managed service.
-
Squire Patton Boggs
Our team of global professionals will keep your organization ahead of the curve by keeping you abreast of the legal, regulatory, policy and legislative changes that will impact your business. We advise clients in all the legal, regulatory policy and legislative issues that have substantive impacts on the way the public and private sectors manage information collection, storage, transfer and cybersecurity risks, both before there is a breach and after it has occurred.
-
SRM
SRM is a business founded by experts drawn from the private sector, police service and government agencies. Our mission is to continue to be a trusted partner, supporting, enhancing and resourcing the information security function of every client. We deliver a complete portfolio of cyber security services, from ISO27001 and PCI compliance to advanced penetration testing, training and simulation exercises, and everything in between. These services are provided by an expert team headed by a personally assigned named individual.
-
SSH Communications Security
With our software solutions, companies can orchestrate and monitor privileged access to their mission-critical data and safeguard encrypted data whenever it is in transit. SSH Communications Security is the market leader in developing advanced security solutions that enable, monitor and manage encrypted networks.
-
State Farm Insurance Companies
State Farm is a family of insurance and financial services companies that together serve tens of millions of customers in the U.S. Our many lines of business together offer over 100 products.
-
Statice
Statice is an automatic data anonymization software that allows you to easily leverage and process existing or new personal data and ensures that no personal information is ever exposed. This happens through synthetic data. Synthetic data entirely anonymizes your customers data while preserving its statistical utility. Learn on how this works and how this can be useful for you.
-
Stephenson Harwood LLP
Our experienced team advises clients in relation to all aspects of data protection and information law. Our focus is on providing clear, succinct guidance that cuts through the complex framework of the regulations and goes further than straightforward black letter advice.
-
Sterns & Walker
With our emphasis on complex litigation involving aviation accidents and defective products, we often draw on our extensive network of experts and consultants in a wide variety of disciplines to assist us in case preparation, compiling expert reports and presenting testimony at trial. We have worked with some of the top experts in their fields, including the privilege of having a Blue Angels pilot in one of our cases, a memento of which we are proud to feature on this website, as a reminder of what it takes to be the best. For cases which do go to trial, we have access to some of the finest jury analysts, consultants and psychologists to assist us in analysis of prospective jurors and on pinpointing potential biases and prejudices that might adversely impact our clients and their cases.
-
Stevens & Bolton LLP
Our data protection team is fully conversant with complex technical details and displays outstanding commercial awareness of the issues. Issues around data protection, information law and cybersecurity are high profile and often come under the spotlight. Cloud technology, in particular, has increased sensitivity around the handling of personal data.
-
Stickman | Cyber Security by Design
Stickman Consulting is an Australian-based cybersecurity consulting firm providing professional services on audit, assurance and managed security to our clients across different industry verticals. At Stickman we use a ‘security by design’ methodology to provide services to our clients on data privacy and protection.
Privacy & data protection
- Australian Privacy Principles (APP) compliance.
- EU General Data Protection Regulation (GDPR) compliance.
- Data protection officers as a service.
Managed security services
- Managed vulnerability scans.
- 24/7 security operations centre.
- Penetration testing (application and infrastructure).
Implementation and certification of security standards
- ISO27001 implementation and certification.
- PCI DSS implementation and certification.
- NIST framework implementation.
- Security consulting & advisory services.
-
Stikeman Elliott LLP
Stikeman Elliott delivers practical and business-focused legal solutions to the challenges presented by the complex privacy and data protection laws in Canada at both federal and provincial levels. Our lawyers have played a key role in shaping the development of Canadian regulations and best practices in this rapidly evolving area. We have also advised on some of Canada’s highest-profile privacy breach cases in which corporate reputations were at stake and serious penalties and damage awards were possible.
-
Strac
Strac is the modern scanner and data leak prevention solution for automatic sensitive data discovery and remediation — redaction, masking, pseudonymization, blocking and alerting. Strac is powered by its accurate machine learning and optimal character recognition models. Strac works for all kinds of sensitive data including personally identifiable information, protected health information and more. Strac will help companies become compliant as many compliance and privacy laws recommend having a sensitive data scanner and/or a data leak prevention tool. Strac will enable you to quickly process both structured and unstructured text and documents across all major formats and storages, SaaS apps, cloud apps and endpoints like employee laptops.
-
Strikeforce Technologies Inc.
StrikeForce Technologies is a unique cybersecurity company for businesses and consumers that provides “Out-of-Band Authentication” and “Endpoint Protection” using keystroke encryption, for signing on securely to your bank, broker, retail stores, etcetera. In addition, StrikeForce also provides mobile device security on your Apple or Android devices. StrikeForce’s three main products are ProtectID® (authentication), GuardedID® (keystroke encryption) and MobileTrust® (mobile device application) that protect you against hackers, thieves and others trying to steal your information.
-
STRM Privacy
STRM Privacy cuts the costs of privacy for organizations through our data platform. We allow you to enforce compliance, decrease the time it takes to coordinate privacy between legal, business and data teams, and ensure data shared with your teams or third parties is trustworthy and safe to use by actually transforming it — in flight.
How? In a few steps you:
— Encode your policy in a data contract, defining the legal ground and purpose of every data point you collect;
— Enforce compliance by funneling your existing or new data events through a gateway, which only lets data pass if it meets the data contract;
— Split and transform your data into privacy streams, that only contain data directly usable for a specific purpose. If needed, we apply anonymization and encryption techniques to do so;
— Distribute the privacy streams within or outside your organization. Your data consumers can just build, privacy is already taken care of. This way, you limit frustration in coordinating privacy, free up time of your engineers to build on your product instead of conditionals, and enable product development — also with externals — faster and safely.STRM is deployable within your existing stack/cloud.
-
StrongKey
StrongKey (formerly StrongAuth, Inc.) is a privately held company based in Silicon Valley, California, and Durham, North Carolina. As the leader in enterprise key management infrastructure, we are bringing new levels of capability and data security at a price point significantly lower than other solutions on the market.
Providing products and services in symmetric key management, encryption, tokenization and public key infrastructure, StrongKey is focused on securing data in cloud computing, e-commerce, health care, finance and other sectors mandating the protection of sensitive data. StrongKey’s solutions are installed at customer sites around the world and are key components of mission-critical business operations.
StrongKey has defined a unique web application architecture to enable secure cloud computing, which not only ensures strong security of sensitive data in the public cloud, but also does so at lower costs than companies currently spend on enterprise security.
-
SuitePrivacy
SuitePrivacy offers its Privacy Evo platform designed to help companies comply with the EU General Data Protection Regulation. Privacy Evo allows companies to define the data roles within an enterprise, manage different types of data, forecast data transfers to other companies in comparison to those within the European Union, record the data processing activities of everyone handling information, and evaluating risk. The solution also allows organizations to conduct data protection impact assessments, assist with data breach management, and can help automate the generation of information and consent requests.
-
Sullivan & Worcester LLP
In the information age, successful companies must be well versed in the handling and protection of both internal and external data. We work with clients to both minimize their risks and liabilities and capitalize on the opportunities presented by the wealth of information now regularly exchanged between businesses and consumers, vendors and employees. Sullivan & Worcester’s Privacy & Data Security Group, comprised of experienced attorneys from our Corporate, Intellectual Property, Tax and Labor & Employment Law Groups, assists businesses of all sizes and types.
-
Sutherland Asbill & Brennan LLP
Eversheds Sutherland’s Cybersecurity and Privacy Team helps clients manage the obligations and risks of gathering, maintaining, utilizing and transferring personal information. Our attorneys advise companies on regulatory compliance, particularly in the financial services and energy industries. Our hands-on business experience managing information technology risk allows us to provide practical, business-focused counsel on all aspects of information policy, security, storage and management.
-
Sword & Shield
Sword & Shield partners with our customers to meet the needs of its dynamic cybersecurity and compliance landscape.
Early detection measures assist in neutralizing cyberattacks and threats before damage is done. The difference between detecting cyberattacks or fraudulent activity within the first 24 hours makes a significant difference to your business. The systems, technologies and processes for equipping your organization for early and accurate detection of threats can be complicated. Relax! We have done the hard work for you. We specialize in the planning, design and implementation of ongoing monitoring to detect and deal with problems early. That means peace of mind for you.
Building effective incident response capabilities takes careful planning, understanding of modern threats, guiding risk management principles and participation of stakeholders at all levels of the organization. There is a fine line between a well-executed response and chaos. We help companies respond to security incidents the right way. Our team is assisting customers with measured and effective responses to deal with all kinds of threats and security incidents on a daily basis. Let us put our experience to work for you.
-
Sybil Data Services
Sybil Data Services is a GDPR representative based in Paris. We help non-EU companies comply with Article 27 of the General Data Protection Regulation. We act as a unique contact point in the EU. In this capacity, we receive and transmit all requests from third parties on issues related to our clients’ processing activities.
In addition, we work with a team of attorneys and data privacy experts to provide additional compliance services:
- Complete end-to-end GDPR compliance
- Training and awareness sessions
- Data protection impact assessment
- External DPO services
Sybil Data Services is a member of the European Association for Representatives of Data Controllers and Processors (EARDPC)
-
Symantec
Symantec Corporation, the world’s leading cybersecurity company, helps organizations, governments and people secure their most important data wherever it lives. Organizations across the world look to Symantec for strategic, integrated solutions to defend against sophisticated attacks across endpoints, cloud and infrastructure. Likewise, a global community of more than 50 million people and families relies on Symantec’s Norton and LifeLock product suites to protect their digital lives at home and across their devices. Symantec operates one of the world’s largest civilian cyber-intelligence networks, allowing it to see and protect against the most advanced threats.
-
Symmetry Compliance
Symmetry is a specialist data protection and privacy organization that provides expert consultancy, people and software solutions, including:
- DPO as a service.
- EU representation.
- Staff training.
- E-learning software (LMS, course authoring toolkit).
- E-learning compliance courses.
- Data mapping software (GDPR Article 30, plus inventories for systems, vendors, data and more).
- Full GDPR implementation programs.
- Contract personnel to cover fixed term contracts, sudden leavers and maternity cover.
- GDPR consultancy (audits, data subject requests, breaches, DPIAs, policies, privacy statements, etcetera).
- Vendor risk assessments.We have experience across multiple industries and all company sizes, from government and listed clients right down to SME and startups.
-
Symmetry Systems
Symmetry Systems is a cybersecurity company focused on helping businesses and organizations secure their data from the data out. Based on extensive and award-winning research at the University of Texas at Austin, Symmetry Systems developed and brought to market DataGuard.
DataGuard is the first hybrid-cloud data security posture management solution designed to extend the zero trust philosophy to protecting data, not just the technologies or users who access that data. DataGuard runs fully and securely in the customers’ cloud to ensure comprehensive control over data.
Modern security teams use DataGuard to gain a full understanding of their cloud data stores, data objects, access permissions, and using an evidence-based security approach to protect their business from data breaches, and to meet stringent compliance and privacy regulations.
-
Symptai Consulting
Symptai Consulting is a leading IT security and IT advisory consulting firm in the Caribbean with a bold mission of supporting organizations to develop maturity in the areas of data privacy and protection, cybersecurity, anti-monetary laundering, digital transformation and risk management.
In the data privacy practice, we provide certified training as well as implementation services including readiness assessments, gap assessments, implementation roadmaps, governance and strategy development, data mapping, records of processing activities development, and ongoing monitoring and evaluation.
-
Sypher Solutions
The company develops Sypher Suite platform software designed to help companies to simplify the process of analyzing, documenting and maintain GDPR compliance.
The platform uses specific logic and workflows that divide the project into smaller chunks, easier to manage, and delivers an overview of the progress and issues that require the attention of the DPO.
It is also a practical work tool, with frequent updates, based on users’ comments and the specific problems they encountered while implementing and maintaining GDPR within their organization.
-
Syrenis
Cassie is a privacy and data management platform, enabling organizations to comply with global data privacy regulations, including the EU General Data Protection Regulation. Cassie is multilingual and multibrand, allowing for granular consent management and detailed matching rules to be easily configured. Cassie has a suite of modules covering management (SARs, PIAs, DPIAs, risk assessments) and data collection and redistribution (structured and non-structured data compatible, web form widgets, email links, restful API, customer service plugins, public portals, legacy system ingestion/export). Cassie has unparalleled audit reporting and is available in cloud or on-site, managed by an intuitive easy to use point-and-click interface.
-
Sys Tools
In today's digital landscape, compliance with data protection regulations is more critical than ever, especially with the introduction of India's Digital Personal Data Protection Act. To navigate the complexities of this evolving legal framework, businesses need expert guidance. Our data protection officer as a service offers a cost-effective, flexible solution tailored to your specific compliance needs.
By partnering with us, you gain access to experienced DPOs who understand the nuances of the DPDPA, ensuring your organization adheres to its strict data protection requirements. Our service helps manage risk, safeguard personal data, and implement best practices for privacy and security. We assist in conducting data audits, drafting privacy policies, responding to data subject requests and maintaining comprehensive records of processing activities.
-
Taceo Limited
Taceo Limited provides data privacy and information security services for clients including DPO services.
-
Taft, Stettinius and Hollister LLP
Taft’s Privacy and Data Security attorneys draw on experience that spans industries, practice areas and jurisdictions. Our attorneys keep at the forefront of up-and-coming state and federal privacy laws concerning the collection of personal/sensitive data. We help clients not only comply with the law, but also seize opportunities to capitalize on the power in their information to grow and better serve their purposes.
-
Talentarium
Talentarium is the first headhunting agency specialized in the IT sector in Southeastern Europe. We are located in Zagreb, Wien and Berlin, but our views are significantly wider. The candidates we cooperate with and for whom we try to successfully find a suitable structure for their development are mainly from DACH and SEE regions. The specialization in the IT industry refers to the deep understanding of industry and technology. The role of Talentarium in the market is to provide assistance in employment of narrowly specialized or management staff needed for the employers. Most often these are programmers, system and network administrators, consultants, key account managers or sales managers, managers of various teams and projects, designers, architects and planners, marketing and PR professionals, but also, still inevitable ninjas, wizards and hackers, all mostly from the start-up world.
-
Tata Consultancy Services Limited
TCS combines tech expertise and business intelligence to catalyze change and deliver results. As global leaders in IT services, digital and business solutions, TCS partners with clients to simplify, strengthen and transform their businesses.
-
Tealium
Tealium offers several products designed to help organizations map out all of the data they possess. Products such as their TealiumiQ, EventStream, and AudienceStream give companies the ability to define audience-level data and place it in a central hub. Telium’s DataAccess deliver the information to a company’s data team’s application in real time, giving them the opportunity to take the results and communicate them to marketing and customer service teams. Tealium’s services also help an organization comply with the General Data Protection Regulation by mapping out information, allowing a company to share its data policy across an organization and to its customers, and creating user permissions for accessing data.
-
TechGDPR
TechGDPR supports technology organizations, including tech startups and multinational corporations with their compliance to the EU General Data Protection Regulation and with privacy matters in general, including privacy by design, product privacy and the appointment of a data protection officer or representatives. In particular, we help with the group-DPO appointment, EU representatives, analyzing complex technical and organizational situations, and deep-tech (blockchain, artificial intelligence, Internet of Things) companies.
-
Teleperformance Group
Teleperformance connects the biggest and most respected brands on the planet with their customers by providing customer care, technical support, customer acquisition, digital solutions, analytics, back-office and other specialized services to ensure consistently positive customer interactions. When your customers contact you or vice versa, we are there to support them and make sure they have a unique experience with your brand in all channels.
Analytics Solutions
By bringing together technology, advanced statistics and customer interactions, we transform data into opportunities. Our smart and tailored solutions predict customer behavior and define the best strategy for your company.Internet Interactions
Teleperformance Internet Interactions offers a comprehensive suite of services that are fully customizable and capable of fulfilling client requirements by lines of business, segmentation, operating systems and devices.Digital Solutions
e-Performance is Teleperformance’s solution to engage, interact and connect your brand with your customers using all social media channels. We help you get the most out of social media. We help drive customer satisfaction Using a combination of customer knowledge and engagement, our 3-part solution helps drive customer satisfaction.
-
Tenet3
Tenet3 is a computer science and engineering firm delivering quantitative cyber security analyses to Department of Defense and private sector customers. We specialize in cyber security economics. Specifically, we identify the strategies and tactics that lead to optimal security investments for our clients. Our metrics assess threat mitigation strategies, cyber security costs, residual risks, and resiliency in complex systems. We believe that the best way to achieve cost effective cyber security is through strategic analysis of a system "as designed", "as built", and "as operating".
-
Termageddon, LLC
Termageddon is an auto-updating generator of website and application policies, including Privacy Policy, Terms of Service, End User License Agreement and Disclaimer. We update policies whenever the law changes to ensure our clients are always in compliance.
-
Termly
Termly provides templates and online generators to help build comprehensive cookie consent management tools, cookie policies, privacy notices, terms and conditions, return policies, data subject requests, and disclaimers. Termly helps small- and medium-sized enterprises, individuals, and agencies stay up to date and compliant with international regulations and privacy laws like the EU General Data Protection Regulation, the California Consumer Privacy Act and ePrivacy Directive.
-
Thales eSecurity
Thales eSecurity is the leader in advanced data security solutions and services, delivering trust wherever information is created, shared or stored. We ensure that company and government data is secure and trusted in any environment — on premise, in the cloud, in data centers and in big data environments — without sacrificing business agility. Security doesn’t just reduce risk; it’s an enabler of the digital initiatives that now permeate our daily lives — digital money, e-identities, health care, connected cars and with the internet of things, even household devices. Thales provides everything an organization needs to protect and manage its data, identities and intellectual property and meet regulatory compliance — through encryption, advanced key management, tokenization, privileged user control and meeting the highest standards of certification for high assurance solutions. Security professionals around the globe rely on Thales to confidently accelerate their organization’s digital transformation.
-
The Ark HQ
The Ark HQ provides education sector-specific training in artificial intelligence, cybersecurity, data protection, and health and safety to empower teachers, administrators and support staff with essential knowledge and skills.
Our training targets unique teaching challenges to achieve better educational outcomes over corporate training.
Experienced professionals deliver tailored content, empowering educators with practical insights on these topics.
-
The Chubb Corporation
Data breaches, electronic theft and vandalism, denial-of-service attacks and even copyright infringement make protecting sensitive data an issue for every organization. Chubb’s customizable solutions offer the insurance protection you need. As our reliance on technology and data continues to increase, cyber risk does, as well. Learn more about these risks and the services Chubb offers to help our policyholders protect their business.
-
The Hanover Ins. Group
Cyber insurance helps protect businesses from losses to a company's finances, reputation and operational capabilities related to a data breach or cyberattack. It provides protection for both the direct costs businesses may face and lawsuits that are brought against your company by a third party when a data breach occurs. Whether you're a main street business or a technology company with 100 employees, The Hanover has a cyber solution to meet your needs. We offer an all-inclusive cyber solution with limits up to $10 million for small- and mid-sized businesses with up to $1 billion in revenue through our financial strength, preferred service provider network and tailored coverage.
-
The Hartford
Data breach insurance and cyber liability insurance helps cover the costs of a data security breach for things like identity protection solutions, public relations, legal fees, liability and more depending on the coverage you choose. You want data breach coverage in place because quick action is critical to help restore the public’s confidence, if your business is victimized by a cyberattack.
To mitigate the risk of civil litigation and other penalties when a data loss or theft occurs, a cyber liability or data breach insurance policy can provide access to professional assistance to help businesses comply with applicable laws and regulations.
-
The Law Office of Larry R. Williams, PLLC
Our law firm has trusted attorneys in the areas of personal injury, Social Security, estate and probate, and business formation and representation. Our practice has thrived not on the number of clients we have served, but on the number of clients we have served well. We provide all our clients with quality, competent and aggressive legal representation across a broad spectrum of legal matters.
-
The Media Trust
The Media Trust’s GDPR Compliance solution continuously monitors your digital assets for unauthorized tracking of consumer data and company-specific privacy and data collection policies. Unlike other compliance frameworks and platforms, The Media Trust provides real-time insight into user identification and tracking behavior executing through your website and mobile app environments. With 12+ years experience in monitoring the digital ecosystem, our unique capabilities facilitate holistic digital risk management for websites to enable you to demonstrate reasonable care.
-
The Navigators Group, Inc.
NAVSecure ® provides third-party cyber liability coverage for liability arising out of a company’s media content, network security and data privacy wrongful acts. Our specialists can tailor policies to meet your company’s needs in this quickly evolving legal and regulatory landscape.
-
The Newberry Group
As one of the only employee-owned IT firms in the United States, we are motivated to create a “Signature IT Experience” with every client. As Newberry Employee Owners, we bring ethical behavior, professional excellence, and uncompromised integrity to achieve client, individual, and corporate goals.
Why Choose Newberry Group?
Since 1996, Newberry Group has been meeting client needs within the Defense, Civil, Intelligence, and Commercial business communities. We understand our clients and are committed to exceeding expectations for quality, responsiveness, and technological innovation.Meet Our Experts
Newberry Group is an experienced team of highly-skilled and certified cyber security professionals with Cleared Personnel up to and including TS/SCI Full Scope Poly. Many of our experts are well-recognized in their field and our management team is comprised of seasoned veterans and innovators.
-
The Privacy Compliance Hub
The Privacy Compliance Hub is a comprehensive data protection solution that tells organisations what to do, how to do it, who should do it and when. Used by companies such as Channel 4 and Go Cardless, it provides organisations with their own private, secure online platform from which they can manage data protection compliance and demonstrate that compliance to customers and regulators. The Hub breaks down the requirements of the GDPR to provide organisations with a simple, flexible and intuitive solution to meet their data protection obligations. Customers of the Hub get:
- 50 pages of easy to use information in one neat place.
- Online privacy compliance training for all staff and a way to record who has been trained.
- 30 plus simple templates, policies and records.
- An update-able compliance plan, calendar and a methodology of how to achieve practical privacy compliance in the real world.
-
The Privacy Lab
The Privacy Lab provides online data protection impact assessment capabilities for organizations of all sizes. The process is intuitive and simple to use, stepping the user through information gathering and risk assessments.
-
The Progressive Group of Insurance Companies
The Progressive Group of Insurance Companies has always lived up to its name by being one step ahead of the insurance industry, and finding new and affordable insurance solutions. We began in 1937 with the first drive-in claims office, became the first to introduce reduced rates for low-risk drivers, then changed the insurance shopping experience by offering comparison rates on the Web.
-
The Sm@rtedgeLaw Group
The Sm@rtEdgeLaw Group™ is a new breed of law firm — nimble, tech savvy, on the cutting edge — that breaks the mold of existing law practice to address legal issues in our fast-moving digital economy. Unlike traditional firms that may simply provide legal rationales, we go beyond the norm to also focus on structuring your agreements and operations to minimize legal risks while developing your business.
-
The Travelers Companies, Inc.
Travelers is an insurance company that takes on the risk and provides the coverage you need to protect the things that are important to you — your home, your car, your valuables and your business — so you don’t have to worry.
-
The Winvale Group
Winvale is recognized as the leading provider of government contract consulting and training services to government contractors across all industries and disciplines. We serve executives and managers by providing expert guidance and support as they enter and compete within government markets.
Delivered through advisory services, research and strategic consulting, as well as events and industry briefings, we allow our clients to make better decisions, focus on developing the right sales opportunities and avoid unforeseen corporate exposure.
-
Third Rock
We have the experience and expertise to deliver mitigation in a third of the time and improve your cybersecurity over 450%. With more than 20 years of experience, we changed the cyber risk management and compliance world by making it much easier, faster and affordable to reduce risk and increase compliance.
Specific consulting services for both pre-breach and incident response with privacy include:
Assessments: Quickly discover your vulnerabilities and gaps regarding multiple privacy and cybersecurity regulations (CCPA, EU GDPR, NYDFS, HIPAA, NIST 171, CIS-20, PCI, etcetera).
Technical assessments: Including protected information search and scans.
Risk mitigation and privacy compliance: We cover your entire organization to help you better protect data with employees, processes, technology and vendors.
Virtual/outsourcing: Both virtual chief information security officer or compliance officer expertise.
Audit response: Meet audit requirements in days versus months.
Incident response: Get a plan to minimize damage and cost.
-
Thomas D. Bixby Law Office LLC
The Thomas D. Bixby Law Office provides guidance to health insurers, health plans, and their business partners on compliance with the HIPAA Privacy, Security, and Breach Notification Rules and similar state laws. The firm has extensive experience dealing with the application of state and federal privacy regulations to complex circumstances.
The firm’s website has a variety of HIPAA-related resources available to the public, including compiled HIPAA Rules, a business associate agreement checklist, and Health Alerts and presentation material related to privacy (as well as other regulatory) issues.
-
Thompson Hine LLP
Thompson Hine's nationally recognized Privacy & Cybersecurity practice offers clients an interdisciplinary group of lawyers with experience in complex national and international issues of privacy, data protection, information security, records retention, employment and labor law, consumer protection, internet law, insurance law and intellectual property matters. Our practice is designed to help you develop, implement and benefit from globally compliant data-management practices.
-
Thomson Reuters
Thomson Reuters has released its Data Privacy Advisor, a solution designed to help privacy professionals answer compliance questions through resources it has compiled and artificial intelligence. Users can enter a question into the platform, and the solution will come up with answers ranked by a confidence rating. The confidence rating is powered by IBM Watson, and is created with the intention of getting smarter with each interaction.The solution also allows users to stay up to date with current privacy news, browse topics by jurisdiction, and see where enforcement actions have been taken around the world.
-
Threat Stack, Inc.
Threat Stack enables DevOps and SecOps teams to innovate and scale securely, meeting complex cloud security needs by identifying and verifying insider threats, external attacks and compliance gaps in real time. Purpose-built for today’s infrastructure, the Threat Stack Cloud Security Platform and Cloud SecOps Program combine continuous security monitoring and risk assessment to empower security and operations teams to better manage risk and compliance across their entire infrastructure, including cloud, hybrid-cloud, multi-cloud and containerized environments.
-
ThreatTrack Security
ThreatTrack Security specializes in helping organizations identify and stop advanced persistent threats, targeted attacks and other sophisticated malware that are designed to evade the traditional cyber-defenses deployed by enterprises and small- and medium-sized businesses around the world. The company develops advanced cybersecurity solutions that analyze, detect and remediate the latest malicious threats, including its ThreatAnalyzer malware behavioral analysis sandbox, VIPRE business and consumer antivirus software, and ThreatIQ real-time threat awareness service.
-
Tier2Tek IT Staffing
Tier2Tek staffing agency is a full-service employment agency that specializes in IT staffing. Full-time, part-time, staff augmentation, direct hire, temp-to-hire, outsourced and projects.
-
TigerText
TigerConnect helps physicians, nurses and other staff communicate and collaborate more effectively, accelerating productivity, reducing costs and improving patient outcomes. Trusted by more than 4,000 healthcare organizations, TigerConnect maintains 99.99% uptime and processes more than 10 million messages each day. Its category-leading product innovations and advanced integrations with critical hospital systems deliver high value for hospitals and large health systems.
-
TIMES Attorneys
TIMES Attorneys’ expertise in technology stems from long standing relations with multinational companies in this field, enabling our team to work hand in hand with our clients’ procurement/business teams and to offer the benefits accrued from significant project management expertise in complex IT matters.
TIMES services include CIPP/E, CIPM certified, in-house lawyers experienced in GDPR implementation, privacy clearance and cross-functional work with procurement, business and marketing.
Support and assistance in setting up a privacy management program, its implementation and daily monitoring (governance and related processes, notably restructure, data subject rights and breach notification mechanisms).- Assessment of data mapping and gap analysis.
- Review of consent notices and policies.
- Support with privacy impact assessments.
- Support with vendor management, negotiating data processing Agreements and relevant Terms.
- Support with breach notifications.
- Training.
-
TNP Consultants
Founded in 2007, TNP Consultants is a French, independent consulting firm specialized in operational, regulatory and digital transformations of companies. Present in Europe and internationally, TNP has offered its recognized data protection expertise since 2010.
TNP's international team of data protection experts is a point of contact for companies wishing to comply with data protection requirements, including the EU General Data Protection Regulation, the California Consumer Privacy Act, Brazil’s General Data Protection Law and other regulations across the world.
TNP offers legal and technical expertise coupled with operational skills to assist organizations in achieving compliance with their obligations.
An end-to-end player in data protection, TNP suggests a wide range of services: Data protection officer as a service, compliance audits, information system security, trainings, certifications, etc. TNP also intervenes as a major player in implementation of IT solutions for data protection management, notably in the context of its partnership with the market leader OneTrust.
Its approach and expertise in providing data protection consultancy services for more than 150 organizations and in acting as external DPO for multiple clients in different sectors have paved TNP’s path to a cross-industry breakthrough noted by key players.
-
TokenEx, LLC
TokenEx is a company founded on the principle of safeguarding our clients and their partners against the inherent risk of storing and sharing sensitive information. Focused on flexibility and custom solutions, the TokenEx Data Security Platform enables our clients to tokenize any data set across a range of environments and applications. Utilizing over twenty different token schemes, TokenEx secures the PCI, PII and PHI of our clients to reduce their risk and meet their compliance obligations while still enabling their business processes.
-
Tonic
Tonic helps you protect your customers' data, meet regulatory requirements, and simplify your development and testing process. We do this by making a version of your most important data that is freely sharable. Using machine learning and the latest data processing techniques, Tonic creates data that looks and feels like sensitive or production data (synthetic data) but is based on an underlying model. You can safely use the synthetic data anywhere — in testing, development, marketing, sales demonstrations, on-premise or in the cloud. Customers using Tonic today are seeing decreased bug counts, accelerated development cycles, and faster iteration on models.
-
Toreon
Toreon provides information security consulting services. They help customers leverage information technology and achieve organization’s goals. While customers run their business, Toreon keeps track of the information risks that the organization faces and will help customers to only take actions that fit their risk appetite.
-
Torkin Manes LLP
Understanding and using technology effectively is a critical component of any successful business today. If you are a developer of technology, you need lawyers who understand the unique nature and value of your products. If you are a user of technology, you need lawyers who understand the business issues involved in negotiating the development and use of mission-critical technology components. If you are a buyer or seller of technology companies, you need lawyers who understand the valuation metrics for intangible assets. No matter what your participation in the technology field, you need lawyers who monitor the constant changes to the complex array of laws and regulations governing information technology.
This combination of expertise crosses legal disciplines, which is why Torkin Manes’ Technology Group combines corporate/commercial, technology, privacy, health, employment and litigation expertise — to protect your assets and your best interests. We have particular expertise in the unique challenges of cloud computing, with its questions of data security, ownership and jurisdiction.
-
Torys LLP
Matters of privacy and managing data effectively are now more than ever key to the success and reputation of businesses in all sectors. Torys’ Privacy Practice includes top-ranked lawyers with extensive experience who can assist clients in addressing their privacy concerns.
With cyberattacks and data breaches increasing in frequency and sophistication, data protection should be front-of-mind for boards and company executives. Torys’ cybersecurity team operates at the crossroads of technology, privacy and governance, drawing cohesively from our expertise across all these areas.
-
Trace
Trace is an expert privacy and data protection company that offers professional services, online learning and brilliant compliance software. Our SaaS solution offers clients an easy-to-use, visual and streamlined approach to EU General Data Protection Regulation and California Consumer Privacy Act compliance.
-
TraceSecurity, Inc.
TraceSecurity is proud to offer a variety of core solutions to meet your needs. From risk assessments to security awareness training, we provide services that proactively prepare you and your employees for real-world cyber threats.
-
Transcend
Transcend encodes privacy across a company’s technology stack and makes it easy to comply with privacy laws like the EU General Data Protection Regulation and the California Consumer Privacy Act, as well as platform conditions like Facebook’s Limited Data Use signal and Apple’s Account Deletion requirements. With the largest ecosystem of 1,300-plus pre-built connectors, Transcend’s secure platform connects to anywhere personal data lives and fully automates access, deletion and opt-out requests, from authentication to compilation and data return.
With data silo discovery and smart content classification, Transcend auto-generates a live data map in a collaborative, central hub. Any time a service is added or changed, Transcend auto-detects it and updates Data Subject Access Request fulfillment accordingly for seamless, comprehensive compliance.
Transcend also offers the only consent manager that goes beyond cookies to govern all 200-plus tracking technologies with customizable user interface that works in harmony with any existing widgets or configurations on the website.
Customers include Clubhouse, Robinhood, Opendoor, Patreon, Hims & Hers, and Groupon.
-
Transcendent Group
At Transcendent Group, we are more than 140 specialists in governance, risk and compliance who make the complex straightforward while tailoring solutions to fit our client's needs. Our IT Security & Governance group has extensive expertise in EU/U.S. data protection and information security to assist clients across a broad range of industries in the following areas:
• Gap analysis/readiness assessment of applicable regulations in EU/U.S.
• Data protection officer (training, interim or as-a-service).
• EU representative services.
• Inventory/mapping of data flows.
• Development and drafting of policies, routines and processes.
• Vendor risk assessment and audit.
• Project management and audit of privacy/data protection programs.
• Data protection impact assessments.
• Training/awareness sessions at board, management or employee level.
• Information security assessment and IT audit (ISO 2700x, NIST).
• Penetration testing (network, website or application).
-
TransUnion LLC
TransUnion is more than just a credit-reporting agency. They are a sophisticated, global risk information provider striving to use information for good, with solutions including customer credit reporting, audience segmentation for digital marketing, debt recovery, identity verification and authentication, customer analytics and consulting, health care patient access, digital lending, portfolio management, customer acquisition, fraud detection and prevention, customer engagement solutions, data breach services, and health care revenue recovery.
-
Trenam Law
Responding to a Data Breach
If an organization has been the victim of a data breach, we provide rapid and comprehensive incident response under the protection of the attorney-client privilege. Our firm will triage the incidents to counsel clients on the appropriate response. Often an organization will be able to resolve data security incidents without litigation or even public disclosure, through experienced understanding of applicable statutes or through strategic engagement with regulators. The legal components of post breach response are varied and complex and may include:
- Notification of Affected Individuals.
- Law Enforcement Forensic Investigation.
- Notifying Insurer.
- Public Relations Litigation.
A ProactiveApproach to Cybersecurity - Privacy, Information Security and Cybersecurity Posture Improvements
Trenam offers clients a comprehensive look at the organization’s information management and security practices, and recommends necessary steps to not only comply with the law but to ensure greater protections by implementing best practices for the organization’s particular business sector. This includes design of protocols for data security, sharing and use of data, e-discovery readiness, and records retention, among other things. We can help organizations formulate or revise privacy policies to comply with new laws or adjust to new technologies or changes in operations. Most importantly, we can act as a vital part of an organization’s team that includes C-level, technology, human resources, and public relations professionals.
-
Trend Micro, Inc.
Trend Micro enables the smart protection of information, with innovative security solutions that are simple to deploy and manage, and fits an evolving ecosystem. Trend Micro solutions provide layered content security for mobile devices, endpoints, gateways, servers and the cloud. Leveraging these solutions, organizations can protect their end users, evolving data center and cloud resources, and information threatened by sophisticated targeted attacks.
-
Tresorit
Tresorit is a secure file synchronization software that uses the cloud to store encrypted data in order to make it shareable and accessible from everywhere. Tresorit is specifically designed to share confidential data of business users. Encryptionis performed before the data gets uploaded to the cloud, therefore, users of Tresorit do not require to trust the cloud provider or the communication links. Encrypted content handled by Tresorit is shareable without reencryption and sharing is reversible by permission revocation.
-
Tridena
Tridena are a risk and data privacy consultancy. We represent a number of clients across a range of sectors, from a single privacy audit to the provision of a full range of data privacy functions.
-
Trilateral Research
We offer a full range of GDPR compliance services, including data mapping, GDPR audits, DPIAs and DPO services to our clients, assessing and providing methodologies to reduce risk. Founded in 2004, we have been providing DP services since our inception, including contributing to privacy standards development, from Directive 95/46/EC through to the GDPR.
Our highly multidisciplinary team, who are GDPR certified, has considerable experience in GDPR activities in the public sector, with clients representing central government, local authorities and international organizations and agencies. Our private sector clients represent diverse industries, including media, technology and digital services, telecom, manufacturing, amongst others.
-
TripleBlind
TripleBlind has invented novel cryptographic technology that allows all operations to be done on the data to be performed without ever taking possession of the data. There are a couple of key unique features of this encryption that we've invented and patented: There's no decryption key, and decryption is impossible. The data is turned into an encrypted blob on which you can do all your operations and have the data but never recreate a copy of the data in the raw. All operations are possible on all kinds of data, including images, text, voice, video, tabular, etc. You can do everything from deep learning to vanilla Excel-like data processing. Never require access to any raw data — you can deliver your services without ever needing to ask your clients to share data. This reduces risk exposure to both you and your clients and eliminates a lot of the regulatory and compliance friction that currently exists today.
-
Triskele Labs
'Triskele Labs is one of Australia's fastest-growing crest-certified cybersecurity companies. We deliver services including traditional projects such as Penetration Testing and Compliance, through to new breed services including 24x7x365 Security Operations and outsourced Cybersecurity Managers to ensure we are a "one-stop-shop" and able to deliver end to end. Triskele Labs is also featured in the 2019 Forrester report "Now Tech: Cybersecurity Consulting Services In Asia Pacific, Q4 2019" as one of the 18 cybersecurity consulting service providers in Asia Pacific.
We go the extra mile to demystify cybersecurity and become your trusted partner by developing customized programs that deliver on your specific needs to meet your budget. Our mission is to deliver fit for purpose solutions based on actual risks. Triskele Labs delivers services for the smallest of business through to the largest, and everything in between.'
-
TRU Staffing Partners
Data protection officers as a service and privacy professionals skilled in GDPR regulations and compliance with IAPP certifications (CIPP/E, CIPP/US, CIPM, FIP) available to audit, consult, and help elevate your privacy policies and practices institutionally. Our contractors are often on part-time annual contracts with our clients serving as their official DPO; others are brought in to specifically solve or remediate an issue related to GDPR or privacy compliance. TRU boasts both operational and high-end consultative talent in a variety of industry verticals from healthcare to financial/banking/brokerage and more.
-
Truata Limited
Truata is an independent Irish Trust founded by Mastercard and IBM in 2018 that offers a new approach to data anonymization and analytics. Its reason for existence is to solve one of the most challenging issues under EU data protection, namely to allow companies to meet the very high threshold for anonymization. Truata offers its customers a service to lawfully conduct analytic services on fully anonymized data through various tools, data insights, algorithms and reports that customers can use in their own products and solutions. As a privacy enhancing organization, Truata allows companies to extract value from data sets while preserving individuals’ privacy.
-
Trunomi
Trunomi unlocks customer data using consent and data rights. Trunomi provides customer consent and data rights management technology which enables businesses to request, receive and capture customer consent to the use of their personal data. For the business we create consent receipts and convert them to customer data rights accessible across all data systems. We enable businesses to comply with EU GDPR, data privacy laws, and replace inefficient and costly legacy approaches. For the customer we provide control and transparency over how their personal data is used.
-
Trust Hub
trust-hub is a global technology leader in the emerging field of personal data governance. Its patent pending technology enables global organisations to optimise the business benefits from using this personal data whilst dynamically managing their global regulatory obligations and associated risk profile.
The trust-hub platform is provided as SaaS and leverages graph database technology, state of the art visualisation techniques, machine learning algorithms, flexible interfaces and data level encryption to deliver market leading functionality and security. This includes dynamic data mapping (both internal and supply chain), gap analyses, rights and consent management, DPIAs, risk assessments and breach mitigation.
-
TrustArc
TrustArc offers privacy compliance and risk-management solutions to help design and build privacy programs, assess and remediate risks, and manage and demonstrate compliance. It offers a data privacy management platform, which includes website/app scanning; a data inventory manager; an assessment manager dashboard, including off-the-shelf PIAs, cross-border data transfer and customized enterprise privacy management solutions; and cookie and ad-compliance managers. It has scanning technology for insight into PII, data collection, first-hand third-party trackers, and risk levels. TrustArc offers a central, searchable repository for audit trails, and a dispute-resolution service as well as an assessment manager for compliance review and reporting.
-
Trusteer
BM Trusteer helps organizations seamlessly establish identity trust across the omnichannel customer journey. Through cloud-based intelligence, backed by artificial intelligence and patented machine learning, Trusteer provides a holistic approach to identifying new and existing customers, without negatively impacting user experience. More than 500 leading organizations rely on Trusteer to help enable and secure their customers’ digital journey and support business growth.
-
Trustmarq Global Services
Governance
- Cyber Security Strategy Alignment.
- Policy, Process, and Standards Development.
- Business Resiliency and Recovery Strategy.
- Secure DevOps Services.
- Executive Dashboards & Metrics Reporting.
- Data Governance and Privacy Strategy.
- GDPR Program Strategy.
Assurance
- Audit Readiness and Response.
- Vulnerability Assessment & Penetration Testing Services.
- Application Vulnerability (Static and Dynamic) Services.
- IAM User Access Authorization Reviews.
- IAM Identity Consolidation Services.
- Mergers & Acquisitions (M&A) Due Diligence.
- ISMS Certification & Accreditation Advisory.
- Risk & Compliance Assessments.
- Third Party Risk Assessments.
- Customer/Partner Risk Assessment Advisory.
- Efficacy Assessments (risk, privacy, security, compliance, performance).
- GDPR Readiness Assessment.
- GRC Health Check.
- Security Lifecycle Dependency Mapping.
Transformation
- Security Program Transformation.
- Security Architecture Transformation.
- Organizational Change Management.
- Technology Platform Standardization.
- Endpoint Standardization and Assurance.
- ITSM Alignment and Transformation.
- Business Process Improvement.
- Data Inventory, Classification and De-Duplication.
- Secure Cloud Architecture & Design.
Enablement
- On-Demand Leadership.
- ITSM Maturity Benchmarking.
- Security Awareness and Training.
- GRC Automation.
- Secure Cloud Adoption.
- Interim Operational Support Services.
- Advanced Cybersecurity and Risk Analytics.
- Managed GRC Services.
- Managed SecureDevOps Services.
- Managed Third Party Risk Governance.
-
TrustNet
TrustNet is a leading provider of on-demand IT security and compliance management solutions including managed security, compliance assessments, security testing and awareness training.
The iTrust Managed Security-as-a-Service platform provides intrusion detection, vulnerability management, log management, file integrity monitoring and wireless intrusion detection delivered as a service.
-
Trustwave
Trustwave helps businesses fight cybercrime, protect data and reduce security risk. With cloud and managed security services, integrated technologies and a team of security experts, ethical hackers and researchers, we enable businesses to transform the way they manage their information security and compliance programs.
-
TrustWorks
TrustWorks is a privacy management suite that helps you efficiently build your privacy program, empowering collaboration to make everyone a part of your privacy team.
A better privacy program comes from bringing your business on board. With Trustworks' smart automations, easy-to-use workflows, tailored communications, collaborative setup and proactive support, you can operationalize your privacy program without it becoming a burden on your business. Leading companies like TravelPerk, Glovo, Luno, Fenergo and Flywire build their privacy programs with Trustworks.
TrustWorks' commitment is to empower privacy leaders through smoother privacy operations and collaboration. Thus, TrustWorks has built a private community of 200-plus privacy leaders and chief information security offiers. Experts from leading global scaleups and enterprises (like Pipedrive, Typeform, or DAZN) have joined this community to discuss the challenges of modern, technology-driven privacy.
-
TrustWorks
TrustWorks is a privacy and AI governance platform that helps privacy professionals streamline operations while fostering a collaborative culture across the entire organization. Winner of the Most Impactful Data Privacy Product at the Picasso Awards and built on the belief that building trust is a team sport, TrustWorks enables seamless collaboration, making everyone part of the privacy program while empowering privacy professionals to work efficiently and independently.
TrustWorks understands that a successful privacy program brings the entire business on board. With intuitive workflows, smart automations, tailored communications and proactive support, our platform embeds privacy into your operations without creating additional workload. From data mapping to privacy impact assessments, TrustWorks simplifies and operationalizes privacy management, enabling you to build a robust program that scales with your business needs.
Leading companies like Westinghouse, Vtex, Glovo, Luno, Fenergo, and Flywire trust TrustWorks to build their privacy programs.
-
Tufin
Tufin is the leader in Network Security Policy Orchestration for enterprise cybersecurity. Companies turn to Tufin to simplify the management of some of the largest, most complex networks in the world, consisting of thousands of firewall and network devices and emerging hybrid cloud infrastructures. Enterprises select the company’s award-winning Tufin Orchestration Suite to increase agility in the face of ever-changing business demands while maintaining a robust security posture. The suite reduces the attack surface and meets the need for greater visibility into secure and reliable application connectivity. Its network security automation enables enterprises to implement changes in minutes with proactive risk analysis and continuous policy compliance.
-
Tupper Law Firm PC
Perform and/or support data protection officer services as contemplated by the GDPR, ranging from serving as the named DPO to short-term or long-term services supporting a new or existing DPO. Advise clients with respect to U.S. state and federal privacy requirements, planning, and compliance strategies, especially consumer products, internet of things, automotive, software, SaaS and hosted services. CIPP/US, CIPP/E, and CIPT certified. Fellow of Information Privacy.
-
Turkey representative IPTECH Legal Danışmanlık
Similar to Article 27 of the EU General Data Protection Regulation, Law on Protection of Personal Data w. no 6698 requires Foreign Controllers (data controllers not established in Turkey that process personal data regarding data subjects located in Turkey) to appoint a representative in Turkey. The representative serves as point of contact for the supervisory authority and for data subjects in matters related to the processing of personal data.
We provide Turkey representative service and data protection officer as a service.
We serve as the representative of leading international companies across different sectors from automotive, manufacturing, services, gaming, health care and others. For full list of services that we provide please click below.
-
TwoBlackLabs
Launched in 2017, TwoBlackLabs provides specialist privacy by design, engineering, operations, management, and risk and governance consultancy services to organizations in New Zealand and further afield. We also provide training and awareness services include IAPP CIPM, CIPT and CIPP/E courses.
At TwoBlackLabs, we recognize the need for practical privacy solutions that cover the entire business lifecycle and meet your organization’s specific needs. Our services are designed to leverage privacy-by-design principles, translating the myriad of regulations and requirements into deliverable, pragmatic, business solutions underpinned by your organization’s relevant strategies and policies.
-
Ultima Risk Management
URM offers a virtual DPO service for organizations. This service includes a planning meeting, scheduled visits on site, call off days for ad hoc support around data protection. We also offer consultancy support for any organization looking to achieve compliance.
-
Unisys
Unisys is a global information technology company that specializes in providing industry-focused solutions integrated with leading-edge security to clients in the government, financial services and commercial markets. Unisys Security Solutions deliver advanced security in a trusted and efficient way that addresses our clients' most complex and mission-critical security and data protection challenges.
Unisys Stealth
Unisys Stealth protects data by concealing endpoints, making them undetectable to unauthorized parties inside and outside the enterprise. Stealth micro-segmentation enforces strong encryption of data-in-motion, which enables appropriate and compliant information sharing, while respecting data privacy and integrity.Managed Security Services
Unisys Managed Security Services deliver comprehensive real-time protection. We help organizations manage overall risk by improving their security and compliance posture.Security Consulting
Unisys works with you to architect a robust security and data protection program that enables your organization to reduce the attack surface, improve efficiencies, meet regulatory mandates and manage security across your enterprise.
-
Universal Safety Practitioners
Based in Worthing, England, Universal Safety Practitioners specializes in health and safety training, providing solutions to companies across various industry sectors. With over 28 years of experience in health and safety, we are well-equipped to offer optimal guidance to your company. Our training services extend throughout the U.K., assisting in the identification and mitigation of risks at all operational levels, from the boardroom to work areas and sites. In addition to our core services, we provide support for achieving ISO accreditation and can serve as the principal designer for your construction design management. From recruiting competent individuals to fostering a health and safety culture, Universal Safety Practitioners is here to assist. We also offer privacy and data protection services to safeguard your information.
-
USoft
USoft Smart Privacy offers an efficient approach and a secure software solution for comprehensive insight and control of a company’s privacy compliance activities. The principle behind Smart PIA is that organizations can configure their own way of working with the software. The default implementation is based on five steps: Data register; triage to decide on the risk appetite; multiple PIA questionnaires; dashboards & reporting; and admin and management function. Smart PIA offers an all-in-one GDPR readiness assessment tool. It’s easy to create your data register, quickly assess high-risk areas, efficiently run PIAs, manage and control data, with repeatable processes, and all evidence in one database.
-
Utimaco
Utimaco is a worldwide supplier of cybersecurity solutions based in Aachen, Germany. Since 1983, Utimaco has been developing hardware-based, high-security appliances, including hardware security modules, and compliance solutions for telecommunication provider regulations, including lawful interception and data retention.
-
V-Key, Inc.
V-Key is a global leader in software based digital security and is the inventor of V-OS, the world's first virtual secure element. FIPS 140-2 validated and accredited by IMDA, V-Key's Security, Authorization, and Verification solutions are used widely across banking and government mobile and digital platforms across the region.
-
Vader Security LLC
Vader Security offers penetration testing services (white box, grey box and black box). We help companies to secure their digital assets, ensure clean networks, identify infiltration risks and protect critical IP.
How we can help you. We can send our Vader-Box to our clients. The box simply needs to be plugged in, and we do the rest. This allows Vader Security to provide a deep-dive internal and external threat analysis, which goes beyond the typical penetration test. Vader offers a unique fully encrypted remote red team product at scale.
Our team members have more than 20 years of experience in the industry and are experts at locking down and blocking threats.
Please contact us for a free consultation.
-
Varonis
Varonis offers products designed to help companies combat cyberattacks and insider threats. Its enterprise security software uses entity behavior analytics to profile anyone using data and will alert the proper channels whenever there is any suspicious activity. It uses predictive threat models to notify if there is any abnormal access to sensitive files, account hijacking, or privilege abuse. Its Data Classification Framework helps a company identify sensitive data and shows where it is exposed. The software helps companies protect any exposed sensitive data, and lets them know if it has been breached.
-
Vayle
Vayle provides cybersecurity and privacy compliance solutions for public and private sector organizations. Based in Toronto, the company’s offerings include privacy consulting, privacy assessments and data protection officer-as-a-service.
Our team is comprised of certificated information security and privacy compliance specialists located in Canada and the United States. We support a wide range of voluntary and regulatory frameworks, including AICPA/CICA, FIPPA, FOIPPA, MFIPPA, NIST and PIPEDA.
-
Venable LLP
Venable offers full-service solutions to everything from routine to novel privacy and cybersecurity challenges. Our team brings to bear significant experience and industry knowledge to help clients satisfy data privacy and security laws and maximize their business potential.
-
Venafi
Venafi established the machine identity protection market, and our solutions protect the largest, most sensitive networks in the world. Companies rely on Venafi to secure the cryptographic keys and digital certificates on which every business and government depends to deliver safe machine-to-machine connections and communications.
-
Veneto Privacy Services
We are data privacy professionals providing full end-to-end advice and privacy project management. We understand that data privacy compliance is a strategic advantage for any company with an online presence. At Veneto we have more than 20 years international data protection and regulatory experience.
-
VeraSafe
VeraSafe’s team of American and European data protection attorneys, privacy professionals and IT security experts is dedicated to providing cutting-edge privacy and security advice that matches the budget, risk tolerance and needs of each client we serve.
VeraSafe can apply our strategic, risk-based approach to improve your organization’s data protection program, including:
- Complete end-to-end GDPR and EU-U.S. Data Privacy Framework compliance.
- Data mapping.
- GDPR data protection officer service.
- GDPR EU representative service (Article 27).
- Vendor risk management and contract negotiations.
- Penetration testing and IT security vulnerability management.
- Employee training and awareness.
- Data protection impact assessments.
- Privacy by design product management.
-
Verdonck, Klooster & Associates
Verdonck, Klooster & Associates is committed to making IT work for people. We are a strategic IT consultancy firm, and we like complex issues. Because ultimately it's all about people, at VKA we not only have in-house technical specialists, but also people who can read an organization. Together with our customers, they realize successful projects that ensure that IT does what it is meant to do: make life easier with smarter, more efficient and faster solutions.
-
Veriato
Veriato is an innovator in actionable user behavior analytics and the global leader in user activity monitoring. More than 36,000 companies, schools and government entities worldwide utilize Veriato solutions to gain insight into the user activity on their network and enjoy the security and productivity increases that come with it.
-
Veritas
Veritas markets its solutions as tools that enable organizations to harness the power of their information to drive business success. Their “regulatory readiness” portfolio delivers capabilities that allow organizations to gain visibility into their data estate, take action to retain and delete data, and assume control over their data to successfully manage the information explosion. From advanced file and user analytics through auto-classification and cloud archiving, Veritas streamlines the collection of custodian data from multiple sources and reduces the manual effort required to stay compliant. Veritas provides an integrated approach to help with the identification, search, retention, protection, and monitoring of key personal and sensitive data.
-
Verizon Enterprise
Verizon experts help global banks adapt and transform their business. Manufacturing firms capitalize on their valuable data. Global retailers personalize their customer experience. And U.S. government agencies protect their data from security threats. Every solution deepens our partnerships with our customers.
-
Verrill Dana
Verrill Dana is a full-service law firm with more than 130 attorneys and a growing number of service-based practice groups. The firm has a regional presence in the Northeast, with offices from Maine to Washington, allowing us to serve clients with interests across the country and around the world. Through scalable staffing, careful communication and skillful project management, Verrill Dana helps individuals and businesses achieve their goals in a manner that suits their unique legal needs and preferred work methods.
Our privacy and security attorneys help clients navigate the complexities of state, federal and international privacy and security laws and regulations.
-
Versprite, LLC
We are a coalition of international black hats, security engineers and thought leaders. Beyond magic quadrants and security-hype, we tailor our expertise to your unique business and technology environment. We offer a range of cybersecurity services with an integrated risk-centric approach so that security decisions become business decisions.
-
Very Good Security
Very Good Security provides tokenization and vaulting services to secure and pseudonymize sensitive data throughout its lifecycle from collection to deletion. With VGS as an end-to-end solution, sensitive data never touches the customer's network and is securely collected, processed, transmitted and stored. This makes compliance with data security and privacy regulations easier and greatly reduces the risk of data loss or accidental exposure. The customer can continue to operate on the data using tokens and also easily map data routes to quickly determine where data is going.
-
Vintez Technologies
Vintez Technologies provides essential privacy and data protection solutions through specialized screen filters for monitors, laptops and MacBooks. These filters are a fundamental component of any comprehensive cybersecurity strategy, designed to limit the viewing angle and ensure that sensitive information is visible only to the authorized user. This critical feature significantly mitigates the risk of data breaches and unauthorized access, which is crucial for maintaining confidentiality in various professional and personal contexts.
In addition to enhancing data security, these privacy screen filters offer an additional layer of protection for display surfaces, safeguarding against scratches and minor physical impacts. They are engineered to reduce the emission of harmful blue light and ultraviolet rays, thereby alleviating ocular strain and promoting visual health during prolonged screen use.
The ultra-thin design preserves high image clarity and is fully compatible with touchscreen interfaces. The advanced construction eliminates digital interference and glare, ensuring a precise and undistorted viewing experience.
By prioritizing both security and user comfort, Vintez Technologies delivers reliable solutions for data protection and screen durability across a range of electronic devices.
-
Vircom
Vircom provides complete email security for small and medium-sized businesses, to reduce the risks posed by targeted phishing, ransomware and other email borne threats. Email archiving and email encryption ensure data protection and compliance requirements are met, along with customer support that is second-to-none in the industry.
-
Virtru
Virtru is an email service offering encryption on every single message. Only the sender and the recipient can see the message. The sender can disable forwarding on any messages and can even set an expiration date for the message, down to the minute when it is received. Senders can even revoke access to their emails if they so wish. When an email is received, the recipient opens the email and verifies their identity within a couple of clicks. The Pro version on Virtru offers more features, including an interactive dashboard, warnings of sensitive information within emails, PDF watermarking, read receipts, and the ability to be compliant with different regulations.
-
VoIP Shield Systems, Inc.
VoIP Shield is one of the leading websites that provide reliable computer, network and IT consulting services. We have been in service since 2000. With more than 15 years of unquestionable expertise, we continue to help individuals, businesses and organizations improve their efficiency and productivity by protecting their computers, networks, and systems from any internal and external threats.
-
Vorys, Sater, Seymour and Pease LLP
Vorys has worked with companies for more than a decade to keep their data safe and abide by constantly changing domestic and global regulations. Doing so requires attorneys who are familiar with the technology you use, the policies by which you must abide, and the nuances and risks that can cause problems. Vorys regularly navigates these waters, and our team works with companies like yours to ensure you can confidently use data to grow your business.
-
WALK Attorneys at Law
WALK is a law firm established by a group of colleagues with extensive experience in advocacy and in-house legal advisory, as well as within judicial authorities. Our strong belief is that the diverse legal backgrounds of our team members represent an ideal blend of knowledge and experience, making our firm competent for providing complete and sophisticated legal support predominantly in the corporate and business law field.
-
Warner Norcross + Judd
We work with organizations of all sizes to identify information subject to privacy laws, develop appropriate policies, procedures and disclosures, and respond to individuals exercising their legal rights. If you share personally identifiable or other sensitive data with others, we’ll make sure that your contracts have appropriate provisions. In the context of litigation or other requests for access to data, we have the technology and staffing to efficiently redact confidential data prior to producing documents. In the event of a data incident, we can help you manage the incident response and, if necessary, provide notification to affected individuals.
-
Watchdata
Watchdata Technologies is a recognized pioneer in digital authentication and transaction security. Watchdata offers a wide range of product line, including smart wearable device, smart mobile terminal, contact and contactless EMV, UICC, e-ID and transportation smartcards, online security tokens, card readers and electronic toll collection devices. Our end-to-end solutions include secure hardware, operating systems, software applications and services such as personalization and remote lifecycle management.
-
WatchGuard Technologies, Inc.
For more than 20 years, WatchGuard has pioneered cutting-edge cybersecurity technology and delivered it as easy-to-deploy and easy-to-manage solutions. With industry-leading network security, secure Wi-Fi, multifactor authentication, and network intelligence products and services, WatchGuard enables more than 80,000 small- and mid-sized enterprises from around the globe to protect their most important assets. In a world where the cybersecurity landscape is constantly evolving and new threats emerge each day, WatchGuard makes enterprise-grade cybersecurity technology accessible for every company.
-
Wave Systems Corp.
Wave Systems specializes in software solutions to help businesses streamline daily tasks, such as record management, incident reporting and eliminating the need for duplicate data entry.
-
Wecontrol Business Services OÜ
For data protection officers and everyone accountable for data protection, who need to learn, manage, operate, measure and truly demonstrate compliance, WeControl.io will give you a very powerful, automated and affordable privacy management platform that demonstrates that your organization is operating under GDPR rules.
WeControl.io is different from other privacy management platforms because it is a one-stop ecosystem that makes your compliance and privacy risk management work very simple and time-saving. WeControl.io is designed for a DPO's daily routines.
-
Whistic
Whistic, in addition to its general vendor management solution, offers an online tool allowing companies to conduct risk assessments both internally and with third parties in relation to the Privacy Shield. The Privacy Shield assessment tool includes a self-assessment tool and provides a team collaboration solution to help manage and hold employees accountable for accurate data entry. Whistic then provides a gap analysis report for Privacy Shield and offers an annual registration tool to maintain certification.
-
White & Case LLP
With one of the largest and most experienced data privacy and cybersecurity groups in the world, our global team is on hand to guide clients through the relevant data protection legislation in the jurisdictions in which they are active. Seamlessly working with their counterparts in other practice areas, our global team has the depth of resources to provide integrated, creative and practical advice on the privacy-related concerns faced by our clients, wherever they are located.
-
Wicki Partners AG
Wicki Partners concentrates on corporate law, restructuring law, IT law, data protection, competition and distribution law, and banking and fintech regulation, as well as blockchain legislation, securities and secured transaction law and dispute resolution, both domestically and internationally. We support and assist you in setting up a privacy management program, its implementation and daily monitoring, including:
• Data protection agreements.
• Data protection assessments and gap analysis.
• Drafting and reviewing privacy policies and contracts.
• Drafting and negotiating processor agreements.
• DPIA.
• Support with access and erasure requests as well as with data breaches.
• Representation in data protection investigation.
• Training.
• DPO as a service.
-
Wickr
Wickr offers a secure messaging service designed for both business and personal use. Wickr offers ephemeral communications, meaning all messages only last for a short amount of time before they are permanently deleted. Users can determine how long the messages will exist before they are eliminated. All messages are encrypted, and no third party, or Wickr themselves, can access them. Wickr offers the same services for group messages as well.
-
Wiggin and Dana, LLP
We provide privacy and security legal advice concerning the GDPR and U.S. laws such as HIPAA, FERPA, and GLBA, and state laws. The advice ranges from limited consultation to very large implementation and compliance projects, representation in connection with investigations and audits, as well as breach reporting and incident management. We coordinate with local member state counsel as needed to address local requirements in the context of broader EU and U.S. federal requirements.
In addition, as a separate array of services, we provide DPO services for clients who either are required to appoint a DPO under the GDPR or member state law or who voluntarily choose to do so.
We can provide services by the hour or on a set retainer fee for both full-time and part-time arrangements. We have individuals who specialize in privacy law and who hold CIPP/E and CIPP/US certifications.
-
Wiley Rein
Wiley Rein’s Privacy, Cyber & Data Governance team is deep and broad. Our attorneys, many of whom are IAPP certified, are involved in developing privacy regulations and public policy, including and beyond Health Insurance Portability and Accountability Act, in industries from high tech to government contractors to financial technology to brick-and-mortar retailers. We cover a range of challenges and are trusted advisors to companies and associations working on privacy and data security around the world, advocating here and abroad for sensible regulation.
-
Wilkinson Barker Knauer, LLP
The privacy attorneys at Wilkinson Barker Knauer have significant experience guiding clients in various industries to manage personal information lawfully, regardless of the sectors in which those clients operate or the purposes for which they collect and use information. Our attorneys have helped some of the nation’s preeminent communications and technology companies, innovative technology upstarts and other businesses develop privacy-compliant business models, policies and practices. We also assist clients in establishing broad, forward-looking privacy-by-design practices and procedures.
-
Willans Data Protection Services
Willans Data Protection Services was founded by lawyers and IAPP-certified data protection experts to offer solutions to customers addressing legal requirements introduced by the EU General Data Protection Regulation.
With four offices in three countries and a reach across the EEA, Willans Data Protection Services provides organizations operating on a multinational basis with EU and U.K. representative solutions, data protection officer services and training solutions under the EU and U.K. GDPR regimes.
Through its affiliation with U.K. law firm Willans LLP, they provide organizations with wider advisory services concerning GDPR compliance such as GDPR audits, drafting policies, preparing legal documentation and providing bespoke legal advice.
-
Willis
Willis Towers Watson is a leading global advisory, broking and solutions company that helps clients around the world turn risk into a path for growth.
Powered by market analytics and behavioral insight, our integrated teams reveal hidden value within the critical intersections of our clients’ organizations. We design and deliver solutions that manage risk, optimize benefits, cultivate talent and expand the power of capital to protect and strengthen institutions and individuals.
-
Willkie Farr & Gallagher LLP
Willkie’s international cybersecurity and privacy team has represented a wide range of U.S. and multinational clients. Our multidisciplinary practice includes attorneys with in-depth experience in all aspects of cybersecurity and privacy law, as well as extensive experience in complementary areas, including technology and communications, securities regulation and enforcement, intellectual property, mergers and acquisitions, complex litigation, antitrust and competition, insurance and consumer protection regulations.
-
Wilmer Hale
We help companies protect data, comply with evolving regulations, and respond to investigations and litigation. WilmerHale’s renowned capabilities in dealing with sector-specific regulatory authorities at the state, federal and international levels. We regularly engage with regulators that — with increasing vigor — are exercising oversight and enforcement powers on the privacy, cybersecurity and communications practices of the companies under their jurisdiction.
-
Wilson Sonsini Goodrich & Rosati
Wilson Sonsini Goodrich & Rosati is the premier legal advisor to technology, life sciences, and growth enterprises worldwide, as well as the venture firms, private equity firms, and investment banks that finance them. We represent companies from entrepreneurial start-ups to multi-billion-dollar global corporations at every stage of development. The firm's attorneys collaborate across a comprehensive range of practice areas and industry groups to help the management, boards of directors, shareholders, and in-house counsel of our clients address their most pressing challenges and pursue their most promising opportunities.
-
Wilson, Elser, Moskowitz, Edelman & Dicker LLP
For well over a decade, Wilson Elser's core team of talented partners, assisted by associates and paralegals has handled breach response and other sensitive situations arising from the misuse of computers and related technology.
An inconvenient afterthought as recently as a decade ago, the explosive growth of e-commerce and increased dependence on digitized data has catapulted cybersecurity to the forefront of business plans, legislative acts and federal regulations as companies and governmental entities deepen their presence and investment in the complex and changing digital landscape.
-
Wiltshire & Grannis LLP
We provide business leaders with the in-depth legal analysis and advocacy necessary to effectively manage these data stewardship responsibilities. Our deep understanding of the overlapping state, federal and international frameworks that define this area of law — and the underlying technology that creates the need for it in the first place — allows us to provide comprehensive representation to clients on the collection, security and use of personally identifiable information. We leverage our firm’s years of experience with the communications, infrastructure, technology, digital marketing, aerospace, defense, energy and legal sectors to offer tailored and practical representation to clients in these industries.
-
WIN! Wireless Intelligence Limited
We support technology companies providing services in Europe to be compliant with GDPR, offering consultancy on processes, technology for data protection and DPO staffing or as a service.
-
Winston & Strawn LLP
Privacy and data security issues affect every aspect of an organization’s information management life cycle. In response, Winston has assembled a cross-functional Global Privacy and Data Security Task Force not only to meet, but also to anticipate our clients’ needs in this rapidly evolving area.
A powerful combination of privacy lawyers, data security lawyers, a former Fortune 500 chief compliance officer, former government regulators and federal prosecutors, and seasoned investigators and litigators, our task force delivers seamless, end-to-end service in cutting-edge privacy and data security counseling, compliance program building, trade secret protection and investigations, cyber-investigations, international data protection and cross-border issues, and data security class action litigation.
-
Winterhawk Consulting Ltd
We offer comprehensive solutions and services related to SAP GRC, SAP Security, SAP Role Design, SAP Fraud Management and SAP Audit to meet your complex compliance needs; in addition, we offer an SAP GRC Cloud Solution. Winterhawk Consulting utilizes our experienced resources, sophisticated methodologies and tools to provide cost effective, high quality customer focused solutions that enable customers to optimize their value on SAP Security and GRC spending.
-
Wire
Wire offers a complete collaboration suite featuring messenger, voice, video, conference calls, file-sharing and even external collaboration — all protected by the most secure end-to-end-encryption there is on the market. Security and privacy are the foundation of Wire. With always-on end-to-end encryption, forward and backward secrecy, and transparent independent audits, Wire is the only solution proven to be quantum computing resistant. Wire is 100% open-source and independently audited — with an option to be tested against your existing security and governance frameworks. Built to scale to tens of millions of users, Wire is ISO, CCPA, GDPR and SOX ready.
-
Wired Relations
Wired Relations is a better way to organize, manage and automate compliance with the EU General Data Protection Regulation and other privacy regulations, as well as IT standards such as ISO 27001/27701. The web-based software offers high-speed mapping of your systems, vendors and processing activities, and we offer your business a well-crafted record of processing activity for your communications with authorities. Wired Relations comes with intuitive task management for better cooperation among colleagues, as well as integrated governance controls from ISO 27001/27701. The result is a solution that provides several opportunities to automate your GDPR process.
-
WireWheel
WireWheel’s software-as-a-service platform supports organizations’ privacy operations regardless of your privacy maturity. The platform is used by global enterprises and fast-growth companies to manage their privacy programs. Solutions include Privacy Program Management and Data Subject Request Management with Cookie Consent. With WireWheel’s PPM, run an effective and efficient privacy program and produce compliance documentation. Integrate into commonly used systems making it easy for employees to respond to assessments. WireWheel’s DSAR management manages consent preferences, consumer requests and the California Consumer Privacy Act's "Do Not Sell" requests with branded portals, verification and authentication, manual and automated data collection, and secure consumer communication and delivery.
-
Wizuda
Wizuda’s software solution offers companies a centralized hub for management and authorization of all data transfers in accordance with the GDPR. The solution offers layers of reporting to ensure GDPR compliance and gives companies a 360-degree view of all internal and external data flows by risk category and region. The solution features privacy and data protection impact assessments and authorization workflows. Wizuda’s reporting capabilities enable companies to prove they are in compliance with the GDPR. The solution also lets companies anonymize, encrypt, and securely transfer data within the platform.
-
WolfSSL
WolfSSL focuses on providing lightweight and embedded security solutions with an emphasis on speed, size, portability, features and standards compliance. Dual licensed to cater to a diversity of users ranging from the hobbyist to the user with commercial needs, we are happy to help our customers and community in any way we can. Our products are open source, giving customers the freedom to look under the hood.
-
Womble Carlyle Sandridge & Rice, LLP
We provide the breadth of legal experience and services to meet our clients’ needs without losing the intimacy of being connected to our different communities. Womble Bond Dickinson has the resources and skills to assist our clients in protecting, maximizing and monetizing their technology and intellectual property assets.
-
Wood, Herron & Evans LLP
Wood Herron & Evans has been a leader in intellectual property law. Serving clients in many different industries all over the world requires constant vigilance to keep up-to-date on all privacy and data security laws and regulations. Not only do we want our clients to be secure as required by law, but also as a positive component of their business practices so they are successful.
-
Wrangu
Wrangu provides risk management, security, privacy products and services globally.
The Privacy Hub by Wrangu provides modules to support key articles of privacy regulations, such as the EU General Data Protection Regulation, California Consumer Privacy Act, Brazil's General Data Protection Law, and Turkey's Law on Protection of Personal Data. It includes data protection impact assessments, data subject requests, record of processing activities and data breach reporting. The software allows you to select applicable data protection regulations at a system and record level, allowing for intuitive and dynamic processing. The Privacy Hub by Wrangu provides easy installation and maintenance, with data-driven configuration settings facilitating adaptability and quick adoption of changes to existing and new regulations.
-
Wult
Wult is a compliance and governance toolkit powered by a proprietary contextual meta-data engine. By placing data governance and compliance in a contextual view, we believe companies can better understand their data and take action.
With compliance growing in complexity and the scope of data usage in companies changing rapidly, our goal is to give DPOs complete control over their data.
This contextual engine enables intelligent scanning and indexing of personal data across fully integrated data sources for a complete and connected view of company data.
Wult's platform allows for retention support and DSR handling that supports data discovery, data sharing and automatic deletion. These tools ensure privacy requests are handled, and data is managed in context — alongside separate company data and within the scope of local regulation and data retention laws.
Our toolkit includes proactive data workflows for data handling, retention and much more. It allows customers to take a proactive and fully integrated approach to data governance and compliance.
-
WWPass Corp.
WWPass is a global cybersecurity company that provides identity, authentication and access management technology. The company battles data breaches and identity theft with advanced authentication and data storage technology to deliver a user experience as convenient as it is secure. WWPass serves individuals, small- and mid-sized businesses, as well as enterprises in higher education, e-commerce and other industries that need to provide their customers and employees with superior security and convenience.
-
Wyng, Inc.
Wyng is a privacy-first personalization platform built on zero-party data (ZPD) and privacy-by-design principles. By using zero-party data as the foundation for personalization, Wyng equips brands to deliver customer experiences that are always welcome, relevant and compliant.
Our platform includes three products:
1. Wyng Microexperiences - makes it easy for a brand to collect ZPD by creating digital experiences that ask customers for their needs, preferences and other personal context, along with consent. Examples include product finders, quizzes, surveys and opt-in forms. Microexperiences plug into the brand's existing website, app and landing pages.
2. Wyng Profiles - unifies ZPD from all of a brand’s sources into ZPD profiles. Customers keep their profiles up to date via a secure portal embedded on the brand’s website, giving customers transparency and control, as well as building trust. Wyng Profiles is powered by a ZPD API, so profiles can be enriched with ZPD from existing sources, and ZPD can be activated using existing marketing systems in addition to Wyng Moments.
3. Wyng Moments - uses ZPD and machine learning to show products and offers that are most relevant to each customer or segment by automatically inserting personalized experiences at key moments of engagement on the brand’s website.
-
XL Group plc
For mid-sized to multinational clients, AXA XL Insurance offers more than 30 lines of business, including property, casualty, cyber, construction, professional liability, financial lines, accident, and health and environmental. We are also a leading player in specialty insurance, including aerospace, fine art and specie, marine, motor, political risk-credit and bond, and crisis management.
XL Risk Consulting offers comprehensive risk management solutions by bringing together AXA’s MATRIX Risk Consultants and XL Catlin GAPS/Property Risk Engineering. Our risk consultants provide pragmatic risk management solutions covering all major risks, including construction, fire, liability, machinery breakdown, marine-transport, supply chain and natural hazards.
-
Yigal Arnon & Co.
Our global practice is characterized by hands-on experience in nearly all major areas of the law, across all industries. We are also known for our unparalleled experience in the technology sector, from artificial intelligence to smart mobility to cybersecurity, and are sought after by entities worldwide seeking to do business in a “startup nation.”
-
Zartech
Zartech is a U.S. based cybersecurity products and advisory services company. Our GRC solution Cyberator can take a 360-degree view of an organization’s cybersecurity program in areas such as process, people and technology and accurately identify all the security gaps. It uses industry expertise, data-driven analysis and industry best practices to transform the security program management. It's Privacy Modeling tool can be used to:
- Design privacy into products and services
- Find laws applicable to using personal information and data
- Guide users through complex privacy laws
This tool can help reduce significant manual effort and also help you stay in compliance with regulations.
Other features include:
- Powerful dashboards
- Cybersecurity maturity & risk assessment
- Information security roadmap development
- Compliance management
- Third-party vendor risk management
- Central hub for policy life-cycle management
- Issue management
-
Zaviant
Zaviant delivers expert guidance in data privacy, cybersecurity and risk management, empowering businesses to navigate complex regulatory landscapes with confidence. We specialize in providing tailored solutions that protect sensitive information, ensure compliance and foster trust.
With expertise spanning privacy program development, information security strategy, AI governance and third-party risk management, we help businesses maintain resilience in an evolving digital landscape.
At Zaviant, we pride ourselves on a client-centric approach, offering practical, actionable strategies designed to address unique challenges and goals. From startups to established enterprises, we support clients at every stage of their journey, delivering measurable outcomes that drive operational excellence.
By staying at the forefront of emerging technologies and regulatory changes, we enable organizations to proactively manage threats and maintain compliance. Our commitment to integrity and innovation ensures that businesses not only meet their obligations but also gain a competitive edge in their industries.
Zaviant transforms complex challenges into strategic opportunities, delivering trusted solutions that protect and empower.
-
ZenData
ZenData is a low code, no code privacy engineering platform designed to help legal, compliance, security and product teams fix vulnerabilities in their data collection methods.
As data risk management continues to be prioritized with the EU General Data Protection Regulation, the California Consumer Privacy Act, the U.S. Health Insurance Portability and Accountability Act, and Service Organization Control 2, privacy compliance solutions must analyze processes across sites, applications and devices in real-time with business insights generated via machine learning and natural language processing to ensure regulatory threats and fines are avoided.
ZenData's consumer, small- and medium-sized businesses, and mid-market platforms are the start of a much larger ETL-like extraction, monitoring, and remediation play where enterprises benefit from:
• Global coverage: Unparalleled jurisdiction support with continuous updates based on laws of regions.
• 24/7 support.
• Fortune 500-level security and trust.
-
ZenPrivata
ZenSolutions are designed to keep the personally identifiable information held by your organization protected against unauthorized access and tampering, protecting you from regulatory fines. By delivering an integrated “privacy stack” to each organization, we can address both macroscopic privacy issues as well as specific industry requirements. Some representative offerings include:
Privacy impact assessments and data protection impact assessments.
Anonymization, pseudonymization and tokenization services.
Virtual privacy professional service.
Automated PII discovery.
IoT and cloud privacy monitoring.
EU General Data Protection Regulation, California Consumer Privacy Act/Privacy Rights Act and Brazil's General Data Protection Law compliance services (falamos Português & hablamos Español).
-
ZeroFOX
ZeroFOX, the innovator of social media and digital security, protects modern organizations from dynamic security, brand and physical risks across social, mobile, web and collaboration platforms. Using targeted data collection and artificial intelligence-based analysis, ZeroFOX protects modern organizations from targeted phishing attacks, credential compromise, data exfiltration, brand hijacking, executive and location threats, and more. Recognized as a "Leader in Digital Risk Monitoring" by Forrester, the patented ZeroFOX software-as-a-service platform processes and protects millions of posts, messages and accounts daily across the social and digital landscape.
-
Zix Corporation
Zix is a leader in email security. Trusted by the nation’s most influential institutions in health care, finance and government, Zix delivers a superior experience and easy-to-use solutions for email encryption and data loss prevention, advanced threat protection, archiving and bring your own device mobile security. Focusing on the protection of business communication, Zix enables its customers to better secure data and meet compliance needs.
-
ZLTech
ZL Technologies Unified Archive is a centralized information governance platform that enables organizations to govern structured and unstructured data within a singular environment, comprising eDiscovery, compliance, records management, storage management, file analysis and analytics. Using its metadata and content analysis functions along with built-in visualization capabilities, organizations can classify and remediate sensitive information throughout the enterprise for the EU General Data Protection Regulation, risk mitigation, and data privacy. As a primary component, ZL UA offers customizable rules-based classification policies, which allow organizations to govern data long-term on an automated basis.
-
Zscaler, Inc.
Zscaler enables the world’s leading organizations to securely transform their networks and applications for a mobile and cloud-first world. Its flagship services, Zscaler Internet Access and Zscaler Private Access, create fast, secure connections between users and applications, regardless of device, location or network. Zscaler services are 100% cloud-delivered and offer the simplicity, enhanced security and improved user experience that traditional appliances or hybrid solutions are unable to match. Used in more than 185 countries, Zscaler operates the world’s largest cloud security platform, protecting thousands of enterprises and government agencies from cyberattacks and data loss.
-
Zunic Law
Zunic Law Firm has been recognized by a world-renowned independent research organization as a global leader in the field of data privacy and protection. We help companies navigate the often-complex requirements of privacy and data security laws. Our law firm advises companies on a wide range of privacy and data security measures and ensures that their data transfer procedures, privacy policies and marketing activities are compliant with the Serbian and EU laws.
Examples of the legal support we can offer include:
- Complete end-to-end GDPR regulatory compliance.
- Complete end-to-end regulatory compliance in Serbia.
- DPO as a service.
- GDPR country representative for Serbia in accordance with the Serbian Data Protection Act.
- Drafting privacy policies.
- Drafting privacy statements for online activities.
- Auditing your data security and privacy company policies.
- Auditing your direct marketing policies.
- Advising on employee privacy.
- Advising on financial privacy.
- Data processing and data transfer agreements.
- Cross-border data transfer (both intra-group and with third parties).
- Drafting and revising binding corporate rules.
- Breach management services.
- Employee training and awareness.
- Data protection impact assessments.
-
Zurich Insurance
Zurich is a leading multi-line insurer that serves its customers in global and local markets. It provides a wide range of property and casualty, and life insurance products and services in more than 210 countries and territories.