Privacy Program Workstreams
Build, Assess, and Maintain Compliance
Build a Program
Our team of security and privacy experts can help build or revamp a program from the ground up.
Maintain my Program
Our virtual privacy team can help supplement your team to maintain ongoing privacy work streams.
Assess my Program
Our team can provide an independent assessment of your privacy program to uncover risk.
Certify my Program
We can integrate privacy into your ISO 27701, SOC 2, or other certification efforts.
CCPA Compliance Universe
Privacy Program Implementation Process
Scope and Planning
- Develop detailed project plan
- Determine nature of CCPA applicability
- Perform CCPA Applicability and Risk Assessment
- Considerations unified approach with other privacy regulations like GDPR, HIPAA, and others
Current State Assessment
- Perform data inventory
- Perform 100 point gap assessment against CCPA requirements to determine current state of maturity
- Produce gap assessment report with detailed recommendations
- Analyze potential data sharing agreements and third party considerations
Program Implementation
- Develop road map to resolve all identified gaps from current state assessment
- Establish privacy governance structure (Virtual Privacy Officer, if required)
- All Policies and Procedures
- Consider security requirements to support privacy program
Annual Activities
- Annual re-assessment of CCPA compliance
- Annual refresh of Data inventory, PIAs, Policies and Procedures
- Consider ISO 27701 or similar certification
- Contractual and client-based diligence activity
- Report to key stakeholders and board of directors
Phalanx GRC
Privacy Program Management
+ Manage all certification and compliance workstreams
+ Collaborate with the internal team and external auditors
+ Map multiple privacy requirements in one place
+ Leverage the compliance calendar to assign and track activity
+ Real-time program status reporting
+ And much more!
Download:
California Privacy Rights Act (CCPA)
Request our series simplifying CCPA compliance:
- Understand the typical elements of a CCPA program
- Review our simple process to build a privacy program
- Understand how a single framework strategy can map regulations like GDPR, CCPA, ISO 27701 in a single harmonized workstream.