-
To create privacy framework based on compliance requirements like GDPR, IDPR, CCPA, ADHICS, CCPA, etc.
-
To map regulatory requirements as per the requirements of “data controller” and “data processor”
-
To conduct Privacy Impact Assessment (PIA) and Data Privacy Impact Assessment (DPIA)
-
To create and update security & privacy policies, procedures, good practices and notices.
-
To assess applications, vendors, infrastructure, cloud services and processes for compliance as per security and privacy requirement
-
To provide remediation recommendations including technical solutions regarding the gaps identified
-
To provide support for privacy related incident management process, recommendations to incidents, to help in preparation of mitigation plan and to provide support in closing the incident.
-
To prepare training material and provide training about maintaining required data privacy standards while collecting, storing, processing and destruction of data.
-
To help with the development of data classification guidelines
-
To create policies for data classification and classify data as per the data classification guidelines.
-
To understand the business, to analyze the data life cycle and accordingly create data flow maps.
-
To implement data leakage prevention tool based on defined business, security and regulatory requirements.
-
To provide assurance regarding Data Loss Prevention and other monitoring tools, efforts and related investigations and remediation actions
-
To assist in the process of identification and creation of inventory of sensitive information that is being stored, processed, or transmitted internally and to a variety of audiences, including customers, vendors, employees, etc.
