In today's economic environment, expectations are high that an organization uses data in ways that maximize benefits to their clients, customers and constituents. This data can include order details, purchasing history, demographics, financial accounts, health information and literally thousands of data points, many of which are considered sensitive. This state of technology has not gone undetected by ambitious criminals who lie in waiting for the slightest vulnerability that they can exploit into their personal gain. Many states have passed legislation designed to prevent this exploitation of an individual's private data. Following the path forged by the Health Insurance Portability and Availability Act ("HIPAA"), private data has expanded to include information that points to any specific financial or demographic item that is not explicitly publicized or granted access permission by the individual.
Rapid Review Assessment Services:
Data Privacy Compliance
Home
Service Offerings
News and Events
Insights
Consultants
About ITPMG
Contact Us
• An assessment and evaluation of the current data privacy policies in place and processes in use measurements, related processes and alignment assumptions
• An evaluation of the current data privacy protection IT support tools
• A gap analysis comparing the data privacy policies, processes and IT support tools to compliance expectations
In addition to the deliverables listed above, we can assist clients in a more detailed comprehensive Data Privacy Compliance policies and process assessment, detailed recommendations for improvement, technology plan and test exercise, incident management planning and help to implement the approved recommended initiatives.
These specific items expected for these organizations often include:
Description
The Rapid Review Assessment Data Privacy Compliance provides a fast and efficient assessment and evaluation of the current data privacy compliance process and IT support tools that cover the following:
Our consultants have developed expertise in creating Data Privacy Compliance policies and process solutions. The team also has experience in performing data privacy compliance policy and process assessments, designing enterprise IT data privacy compliance policies and processes, data privacy compliance IT support systems, resource certification, organization training and coaching.
We team with our client to define the improved data privacy compliance process based on their unique goals and business requirements, and educate their team in the process. We believe that our clients must be able to understand and take ownership of the recommendations, and are also capable of making the continual adjustments to the data privacy compliance management process as changing business needs demand.
Deliverables
Our service offering delivers the following results:
• A knowledgeable person must be appointed to manage the protection of data privacy
• A written information security or data privacy policy must exist and provide specific policies, procedures and standards for protecting protected data
• Training must be provided for all employees and business partners regarding the policy
• A process must be detailed for reporting and correcting violations
• An assessment and evaluation of the current data privacy policies in place and processes in use measurements, related processes and alignment assumptions
• An evaluation of the current data privacy protection IT support tools
• A gap analysis comparing the data privacy policies, processes and IT support tools to compliance expectations
Standard
Our consultants will deliver a summary report that includes the above deliverables and present the findings to our client's management.
Work effort may be on or off-site and is conducted as follows:
• ITPMG will work with designated Client staff to gather the information for review
• Work effort is limited to 2 days for data gathering and assessment and one day for an interactive presentation of findings and recommendations
• ITPMG assumes client has readily available access to skills, content, subject matter experts
• ITPMG will present findings and recommendations within 7 business days after receipt of all information/data from the client and present to senior management
Target audience
Home
Management responsible for ensuring that all private data is secure, responsible for data privacy technology deployments, process management and education.
Privacy Policy
Optional
Site Map
Regulations define very specifically what you must do to reduce the chance that privacy of these data elements will be compromised. Recently passed laws expect organizations with either a business presence in their states, or those that have customers, employees, contractors, or business partners who reside in their respective states adhere to these regulations. That means that you may not need to have presence in the state to be subject to its laws.
Terms of Use
CIO, COO, CEO, Board of Directors
Disclaimers
Rapid Review Assessment Solution Suite Service Offerings
Scorecards and Dashboards

Measurements Assessment
Data Privacy Compliance

Information Security
Back to Service Offerings