Services

Privacy

Gap Analysis

Any understanding of risk to personal privacy information begins with a review to determine current state compared to legal and business requirements while supporting your organization’s goals. It identifies the risks and where there are opportunities to improve data privacy.

This review assesses the current environment containing personal data along with its controls and safeguards. This information is compared against best practices and solutions are offered.

Privacy by Design

Your organization’s data needs to be protected through all uses of technology such as IT systems, network infrastructure, and external partners. The best way to protect data is within an established system design and operation: Privacy by Design. Privacy Impact Assessments are an integral part of implementing a Privacy by Design focus. As each new application or system is considered for addition to your organization, Privacy by Design ensures that the right questions are asked and the collection or processing of personal data is minimized so as to not exceed the purpose for which it is processed. Additionally, Privacy by Design ensures that appropriate levels of security are in place based on the sensitivity of the data.

TC Privacy develops and implements appropriate work flows and processes to ensure that Privacy by Design is included within your organization’s ongoing technology strateg

Information Governance (IG)

Information Governance (IG) Assessments

Information Governance encompasses the way information is handled in organizations. IG helps to determine if personal information is being handled securely, effectively, efficiently, and legally. IG assesses how data is classified, protected, accessed, organized, retained, and deleted. We assess all environments and offer recommendations for improvements at all levels of maturity of any program. Our team has deep experience in all aspects of implementing IG programs and can provide resources and leadership to successfully implement scalable process for any size organization.

Knowledge Management

The goal of all data collection is to maximize its value to the organization. Effectively using data contributes to institutional knowledge. Organizations need to identify the data that creates that knowledge past, present, and future and then use it effectively. Good Knowledge Management identifies the data needed for future success, even if its lifecycle has otherwise expired. Working together with an organization’s subject matter experts, TC Privacy will help identify both future needs and the data to meet those needs.

Cybersecurity

Assess and Implement Controls

Cybersecurity goes beyond hardware and software. It is implementation of appropriate controls and adequate training in order for an organization to stay ahead of the threats. It requires an iterative process of constant improvement in order to stay current against the threat. We offer assessments that partners with internal stakeholders to evaluate more than one hundred controls necessary to protect against internal and external threats. Armed with these assessments, we implement needed controls and offer training to ensure peace of mind.

Data Breach Response Preparedness

Unintended disclosure of personal data either through hacking or a careless moment can be devastating to an organization’s image as well as its bottom line. Breaches happen. The time to have an effective response plan is not after a breach occurs, given the risks and requirements to notify stakeholders and victims of the breach. TC Privacy works with your stakeholders to develop plans and playbooks customized to an organization’s unique culture. We then conduct exercises and preparedness drills to ensure that any breach can be handled as cost efficiently as possible. We plan for multiple contingencies and work within your organization so that meeting the challenge of a breach relies on your tested and proven plan that does not leave the response to chance…