Relentless Global Data Privacy AssessmentDelivering a 360 view of your Compliance
Privacy—An Introduction to Relentless Global Privacy Assessment
Many organizations find challenges in managing privacy 1 on local, national, or international bases. Most are faced with a number of differing privacy laws and regulations whose requirements need to be operationalized.
Relentless global privacy assessment is a framework intended to assist organisations in creating an effective privacy program for managing and preventing privacy risks.This privacy objective is supported by ten main principles and over seventy objectives, with associated measurable criteria.
Global Privacy Maturity Model
• In certain cases, such as security-focused maturity models, not every
organization, or every security application, needs to be at the maximum
for the organization to achieve an acceptable level of security; and
• creation of values or benefits may be possible if they achieve a higher
The Relentless global privacy maturity assessment can be used by any organization as part of its privacy program. The assessment has been developed to help management create an effective privacy program that addresses privacy risks and obligations as well as business opportunities. It can be a great useful tool to boards and others charged with governance and the provision of oversight. It includes a definition of privacy and an explanation of why privacy is a business issue and not solely a compliance issue. Also illustrated are how these principles can be applied to outsourcing arrangements and the types of privacy initiatives that can be undertaken for the benefit of organizations, their customers and related persons.
The Global Privacy Maturity Assessment comprises of ten principles
accountability for its privacy policies and procedures.
Measures how the organisation provides notice about its privacy policies and procedures and identifies the purposes for which personal information is
collected, used, retained and disclosed.
Choice and Consent
individual and obtains implicit or explicit consent with respect to the collection, use and disclosure of personal information.
Use, Retention and Disposal.
Measures how the organisation limits the use of personal information to the purposes identified in the notice and for which the individual
has provided implicit or explicit consent. How the organisation retains personal information for only as long as necessary to fulfill the stated purposes or
as required by law or regulations and thereafter appropriately disposes of such information.
Measures how the organisation provides individuals with access to their personal
information for review and update.
Disclosure to third parties
Measures how the organisation discloses personal information to
third parties only for the purposes identified in the notice and with the
implicit or explicit consent of the individual.
Security for privacy
Measures how the organisation protects personal information against
unauthorized access (both physical and logical).
Measures how the organisation maintains accurate, complete and relevant personal
information for the purposes identified in the notice
Monitoring and enforcement
Measures how the organisation monitors compliance with its
privacy policies and procedures and has procedures to address privacy related complaints and disputes.
Get Ahead of The Privacy Regulatory CurveComplete 360 Privacy Maturity Report, Gap Analysis and Remediation Steps
Advantages of Using the Privacy Maturity Model
The Relentless global maturity assessment provides organisations with a useful and effective means of assessing their privacy program against a recognized maturity model and has the
added advantage of identifying the next steps required to move the privacy program ahead. The assessment can also measure progress against both internal and external benchmarks. Further, it can be used to measure the progress of both specific projects and the entity’s overall privacy initiative.
The Global Privacy maturity model can be used to set benchmarks for organizations starting out can be used by organizations that have an existing privacy function and some components of a privacy program. The Global Privacy Assessment provides structured means to assist in identifying and documenting current privacy initiatives, determining status and assessing it against the Global privacy maturity model criteria.