Privacy Industry Index (PII): Vendors
The privacy industry is young and fast moving. What used to be the fascination of academics has become a business pursuit. Protecting data has value and you have to invest to make sure that data is properly protected. Businesses must work with a large collection of vendors from a variety of disciplines to reach their privacy goals. From the legal advisors to the insurance companies to the IT services and software, the IAPP has sought to wrap its arms around the industry of privacy to get a handle on the universe of privacy vendors. This is a first attempt at defining a subset of the industry, step one of many, and we did our best to identify vendors that IAPP members are working with. This is a work in progress. There is much more that needs to be done. Rest assured that the IAPP is hard at work on dynamic new projects to help you as a privacy professional and to expand the industry of privacy.
Thanks to Andrew Clearwater, CIPP/US, Dennis Holmes, Adam Quinlan and Katie Audet for help in compiling these lists.
Find a Vendor
Established in 1998, Acumin is a cyber security and information risk management recruitment specialist with a global reach. We have developed an extensive breadth of knowledge across all requirements in our space, encompassing end user, consultancy, systems integrator, and vendor organisations.
Our recruitment services can be completely tailored to your business needs, with our core offerings comprising of permanent, contract, and retained search. Beyond this we have worked with clients to provide team moves, European market entry, and outsourced recruitment services.
Joyce Brocaglia founded Alta Associates in 1986. Today Alta is the most prominent boutique executive search firm specializing in Cyber Security, IT Risk Management and Privacy. Alta has established an unparalleled track record for placing key C-level executives, and building world class teams in various industries throughout the US.
“Most of our clients are seeking an executive who can increase the credibility of their department, influence the culture of the organization and effectively partner, sell and deliver their initiatives globally to diverse businesses with varying risk tolerances. Finding this new breed of executive and building the teams that support them is difficult and that is why companies retain Alta”, says Joyce Brocaglia, CEO of the company.
The ACLU works to expand the right to privacy, increase the control individuals have over their personal information, and ensure civil liberties are enhanced rather than compromised by technological innovation.
Established in 1989, Barclay Simpson is the leading corporate governance recruitment consultancy. Throughout the UK, from our office in London, we recruit permanent and interim internal and IT audit, risk security and resilience, compliance, legal, and treasury professionals across all economic sectors.
Our strength lies in the degree of understanding and depth of experience of our consultants in these distinct but interrelated disciplines. Our consultants are specialists who build their knowledge on a long term basis. This enables us to provide a uniquely informed and consultative recruitment service.
BORDC is a national non-profit, non-partisan organization working to restore the rule of law and our constitutional rights and liberties. We aim to make police and intelligence agencies accountable to we, the people whom they serve. We support an ideologically, politically, ethnically, geographically, and generationally diverse grassroots movement, focused on educating Americans about the erosion of our fundamental freedoms; increasing civic participation; and converting concern and outrage into political action.
Cyber Fraud and Risk Management
Ensure regulatory compliance and stop fraudulent activity and data theft with protection against cyber-attacks, insider threats, web and mobile fraud, payment fraud, and money laundering.
Healthcare privacy and data security
Following HIPAA and HITECH mandates, create a full cross-application audit trail of end-user access to protected health information, detect unauthorized user behavior in real-time, and replay interactions when needed to help detect and prevent fraud.
The Cato Institute is a public policy research organization — a think tank – dedicated to the principles of individual liberty, limited government, free markets and peace. Its scholars and analysts conduct independent, nonpartisan research on a wide range of policy issues.
At the CDT, we believe in the power of the Internet. Whether it's facilitating entrepreneurial endeavors, providing access to new markets and opportunities, or creating a platform for free speech, the Internet empowers, emboldens and equalizes people around the world. As a 501(c)(3) nonprofit organization, we work to preserve the user-controlled nature of the Internet and champion freedom of expression. We support laws, corporate policies, and technology tools that protect the privacy of Internet users, and advocate for stronger legal controls on government surveillance.
The CDD is recognized as one of the leading consumer protection and privacy organizations in the United States. Since its founding in 2001 (and prior to that through its predecessor organization, the Center for Media Education), CDD has been at the forefront of research, public education, and advocacy protecting consumers in the digital age.
Consumer Action seeks to create an environment in which individuals have the right to be protected by strong privacy laws, control their personal information and make meaningful choices in their interactions with corporations and government.
Consumers have a fundamental right to the privacy and security of their personal information. These rights extend to collection and control of personal data, limits on commercial and government surveillance, prohibition of discriminatory data practices, and safeguards for consumers’ personal information from unauthorized exposure and use. CFA promotes consumers’ privacy rights by advocating for strong laws and regulations, encouraging fair and effective data practices, and supporting vigorous enforcement to curb privacy abuses.
Consumer Watchdog is a nonprofit organization dedicated to providing an effective voice for taxpayers and consumers in an era when special interests dominate public discourse, government and politics. We deploy an in-house team of public interest lawyers, policy experts, strategists, and grassroots activists to expose, confront, and change corporate and political injustice every day, saving Americans billions of dollars and improving countless lives.
Consumers Union is the policy and action division of Consumer Reports. We work with our million plus activists to pass consumer protection laws in states and in Congress. We hammer corporations that do wrong by their customers, and encourage companies that are heading in the right direction.
Recruitment solutions for the Data Privacy and Information Governance recruitment market. Data Privacy Recruitment Ltd has leading ability and experience to identify the best talent for both private and public sector organisations in all geographies. We service the UK, Europe and all other international geographies as required.
Demand Progress is 501(c)4 entity, with 501(c)3 sponsorship from the Citizen Engagement Lab Education Fund. Demand Progress is a national grassroots group with more than two million affiliated activists who fight for basic rights and freedoms needed for a modern democracy.
To simplify, clarify, and unify the ECPA standards, providing stronger privacy protections for communications and associated data in response to changes in technology and new services and usage patterns, while preserving the legal tools necessary for government agencies to enforce the laws, respond to emergency circumstances and protect the public.
DPO Network Europe is a boutique company exclusively specialized in the recruitment of data protection and privacy professionals across Europe. With ever-increasing demand, we are privileged to work for a broad range of industries, from large multinationals to medium-sized organizations all of which strive for successful privacy compliance programs. Thanks to our domain expertise and our growing network of high-calibre candidates at all seniority levels, we have become the trusted recruitment partner to many renowned businesses for their in-house and external privacy job assignments based in Europe. The foundation of our success is our people who are privacy-savvy and who deliver!
EFF is the leading nonprofit organization defending civil liberties in the digital world. Founded in 1990, EFF champions user privacy, free expression, and innovation through impact litigation, policy analysis, grassroots activism, and technology development. We work to ensure that rights and freedoms are enhanced and protected as our use of technology grows.
EPIC is a public interest research center in Washington, DC. EPIC was established in 1994 to focus public attention on emerging privacy and civil liberties issues and to protect privacy, freedom of expression, and democratic values in the information age. EPIC pursues a wide range of program activities including policy research, public education, conferences, litigation, publications, and advocacy. EPIC routinely files amicus briefs in federal courts, pursues open government cases, defends consumer privacy, organizes conferences for NGOs, and speaks before Congress and judicial organizations about emerging privacy and civil liberties issues. EPIC works closely with a distinguished advisory board, with expertise in law, technology and public policy. EPIC maintains one of the most popular privacy web sites in the world - epic.org.
Fight for the Future is a non-profit organization founded in 2011 whose mission is to ensure that the Web continues to hold freedom of expression and creativity at its core. We seek to expand the Internet’s transformative power for good, to preserve and enhance its capacity to enrich and empower. We envision a world where everyone can access the Internet affordably, free of interference or censorship and with full privacy.
We're working to create a world where people have the information and opportunities they need to tell their own stories, hold leaders accountable, and participate in our democracy. We fight to save the free and open Internet, curb runaway media consolidation, protect press freedom, and ensure diverse voices are represented in our media.
FPF is a Washington, DC, based think tank that seeks to advance responsible data practices. The forum is led by Internet privacy experts Jules Polonetsky and Christopher Wolf and includes an advisory board comprised of leading figures from industry, academia, law and advocacy groups.
Glenmont Group is a full-service executive search firm offering an array of recruiting solutions to its law firm, corporate and professional services clients. Our objective is to help our clients to strengthen and improve their organizations by maximizing their most valuable asset, their human capital. Glenmont Group's talent acquisition strategy is a combination of our ability to recruit talent, leverage the latest technologies and effectively use social media. This proven approach equates to a smooth hiring process and successful placements.
LenznerGroup Ltd. is a premier leader in executive search services, dedicated to Global Security, Technology Risk Management, Cyber Defense, and Digital Transformation arenas. Established in 1997, our firm is recognized for its success in advising and connecting a prestigious clientele, with leading talent from Global 500, Fortune 1000, Big 4, professional services, government, R&D, venture capital and high growth markets. Our clients include some of the world’s most recognized and prestigious organizations.
Our candidates include top Chief Security Risk Officers, Cyber Leaders, Enterprise Technology, Privacy, Law and Compliance practitioners from private and public sectors. Our team of search specialists, proprietary database and business intelligence, coupled with vetted industry advisors and relationships worldwide, enables LenznerGroup to deliver superior services and predictive, value-driven results.
Established in 1982, Major, Lindsey & Africa is committed to meeting the ever-evolving legal search needs of law firms and corporate legal departments. To truly understand the career aspirations of those in the legal field – as well as the needs of the firms and companies that hire them – a recruiter must have experience, focus and in-depth market knowledge of the legal profession. By being committed specialists, our information systems, networks, search and qualification processes – everything we do – is aligned with the legal profession. We know more people in the profession and we know them better than anyone else in the industry. This knowledge has helped us to expand our recruiting service offerings to bring more comprehensive legal recruiting solutions to both law firms and corporate clients. Our deep understanding of our clients' ever-evolving staffing and recruiting needs has led us to launch successful practices in law firm management recruiting (non-legal positions at law firms) as well as the Solutions Practice Group, which focuses on the entire realm of legal human capital and staffing solutions for companies and law firms. Trends in client needs have also led us to open successful legal recruiting practices in London and Asia, servicing the EMEA and Asia Pacific regions, respectively.
Mobius Consulting offers a range of services designed to meet your information risk management requirements. We have invested extensively in our frameworks and methodologies to enable us to guide clients effectively and efficiently. From assessments and roadmap development to designing processes and developing the necessary artefacts, we use a holistic approach to deliver sustainable and targeted solutions.
- IT governance
- Information risk management
- Information privacy
- Information security
- Identity and Access Governance (IAG)
- Third party risk management
Nicholson is a specialist technology recruiter, we work with clients ranging from some of the biggest software companies in the world to niche E-commerce start ups. With multi-lingual teams in each of our specialist markets based in London, Warsaw and Poznan we are well placed to support the international growth of our clients and to provide global opportunities for our candidates.
Founded in 2005, Nicholson International was re-launched and re-branded as Nicholson Search & Selection in 2013 to focus exclusively within the Software, E-commerce and Digital markets. The Nicholson name has long been associated with excellence in the Search & Selection market and we have an exceptional track record. Since 2005 we have supported our technology clients in hiring over 1300 sales, marketing and technical professionals.
We are a London-based charity. We investigate the secret world of government surveillance and expose the companies enabling it. We litigate to ensure that surveillance is consistent with the rule of law. We advocate for strong national, regional, and international laws that protect privacy. We conduct research to catalyse policy change. We raise awareness about technologies and laws that place privacy at risk, to ensure that the public is informed and engaged. To ensure that this right is universally respected, we strengthen the capacity of our partners in developing countries and work with international organisations to protect the most vulnerable.
Dedicated resources to assist clients in development or enhancements of their privacy and data protection programs. We specialize in areas such as GDPR, HITECH and GLBA preparation, defining metrics and measurements based on your company's operations, locations and type of personal data collected.
International data transfers are a function of many business operations, Privacy International, LLP has extensive experience to achieve or enhance organizational compliance and improve the customer experience. Our methodology is that every client shall be treated with integrity, dedication and awareness of the business goals.
The Privacy Laws & Business Recruitment Service has been running since 1997 with an unrivaled success rate. It was established in response to clients who were unable to source specialist data protection and privacy professionals through generalist recruitment agencies. Now many organizations with data protection and privacy vacancies come straight to Privacy Laws & Business.
Privacy Laws & Business specializes in placing skilled data protection and privacy staff in permanent or contract positions, including short term projects. We can recruit for all types of vacancies ranging from global, Europe, Middle East & Africa and UK roles.
Having established a leading presence in the data protection and privacy recruitment market we offer an unrivaled service to our clients. We have become market leaders because unlike other recruitment agencies, we understand data protection and privacy.
PRC is a California nonprofit corporation with 501(c)(3) tax exempt status. Our mission is to engage, educate and empower individuals to protect their privacy. We identify trends and communicate our findings to advocates, policymakers, industry, media and consumers.
Privasee Ltd is the UK subsidiary of Privasee EU an exciting and innovative GDPR and Data Protection compliance solutions provider. GDPR is a favourite buzzword for many vendors and consultants, but where are the practical plans? Privasee has a great answer. A critical gap that Privasee intimately understands and fills, with expertly designed Privacy Impact Assessment tools, templates and processes, partnered with flexible SCORM compliant training. Most importantly, Privasee solutions enable you to quickly show concrete progress towards compliance, but also flex your approach as UK Data Protection requirements and GDPR benchmarks crystalize.
Secure Digital Solutions is a private consulting firm that helps companies build strong information security and privacy programs around clear priorities—for confidence that can be measured. Based in Minneapolis with certified experts in privacy, security and compliance, SDS serves clients across the nation in highly regulated industries including health care, financial services, energy, government services, food distribution, and education.
SecurityHeadhunter.com is an Executive Search Firm specializing in the recruitment and placement of Information Security and Risk Management talent with clients throughout the U.S.
Whether you are an Employer in need of security talent or a Security Professional looking to develop a confidential relationship with a Security Recruiter, we encourage you to discover how our 10+ years of Security Recruitment experience can work for you.
SecurityRecruiter.com specializes in direct security recruiting for Global Information Security, Cyber Security, Corporate Security, High-Level Physical Security, Converged Security, Risk Management, IT Audit, Global Privacy and Global Compliance talent.
Legal advisor for cybersecurity and personal data protection.
Join the Index
Don’t see yourself on the list? This is truly an early effort at recording the players in the field of privacy and we would appreciate to hear from anyone who would like to be included. If you are interested, please send an email to IAPP Publications Director Sam Pfeifle at email@example.com.
Locations have been determined by location information on company websites. If your organization operates in countries not included here, please email a complete list to firstname.lastname@example.org.