If your organization is like many others subject to the EU General Data Protection Regulation (GDPR), appointing a Data Protection Officer (DPO) is potentially one of the greatest challenges you are facing in complying with the law.
In fact, today you may need to comply with a host of data privacy regulations that exist around the world and across industry sectors. For example, the U.S. Health Insurance Portability and Accountability Act (HIPAA) has long required covered entities to appoint someone who essentially must act as a privacy and security officer.
Not only do the requirements of these various roles outnumber the qualified individuals available. In many cases, the scope of duties is more than just one individual can fulfil. Kroll has the experience, expertise and resources to help.
In partnership with leading data privacy law firms, we offer DPO consultancy services that support you in becoming and staying compliant with GDPR and other data privacy laws and regulations.
Kroll’s team of technical and legal experts can help you quickly set up and maintain a compliant DPO program. Our data security professionals have decades of experience and expertise in data privacy and security as well as risk assessments and investigations on a global scale.
Best of all, by taking a strategic approach – one that aligns technology and operations decision-making with data privacy standards and best practices – you can improve cyber resiliency throughout your organization
Typical DPO Duties Under Data Privacy Regulations, Including GDPR | Kroll’s DPO Consultancy Support (In partnership with leading data privacy law firms) |
---|---|
|
|
|
|
|
|
|
|
|
|
|
|
For many organizations, the data breach notification requirements in recent data privacy laws are unknown territory. Kroll is a global leader in breach response and identity theft remediation services. Our experts stand ready to help your organization with end-to-end solutions ... from proactive preparation to crisis management.
Kroll closely tracks the evolution of data privacy requirements around the world. We are continually developing our capabilities to fulfill the needs of our customers to make individual notice in various jurisdictions.
Based in offices in 20 countries and more than 30 cities, Kroll experts speak over 12 languages and have hands-on experience with regulations such as GDPR, US HIPAA, PCI DSS, CASL and Hong Kong's DPO Principle 4. Many of our cyber professionals bring years of unique experience from their former service with law enforcement and regulatory agencies:
As regulators continue to focus on data privacy protection, the requirements are outnumbering the individuals who are available and qualified to take on these duties. Count on Kroll’s team of data protection consultants to not only help you comply, but also to become more cyber resilient throughout your entire organization.
Kroll’s product security experts upscale your AppSec program with strategic application security services catered to your team’s culture and needs, merging engineering and security into a nimble unit.
Manage risk, not spreadsheets. Identify and remediate cybersecurity risks inherent in third-party relationships, helping achieve compliance with regulations such as NYDFS, FARS, GDPR, etc.
Ensure that your third parties are handling sensitive data according to regulatory guidelines and industry standards with our cyber audits and reviews.
Helping organizations manage CFIUS, Team Telecom and FOCI requirements.
Kroll’s field-proven incident response tabletop exercise scenarios are customized to test all aspects of your response plan and mature your program.
by Andrew Rathbun, Eric Zimmerman
by David White
by George Glass
by Dave Truman