OneTrust Privacy Automation vs. Vanta

I strongly recommend it for general management of personal data privacy programs and risk and contract management, it complies with all major world legislation in addition to being easy and fast. Not recommended for data discovery still requires refinement.

Incentivized

Vanta seems excellent for startups, but I expect that they would be even more useful at bigger companies. I think it really helps people that haven't done SOC2 before. I also think it would help in monitoring compliance across teams with many users. If the budget is extremely tight, I think it would be possible to save money by not using it.

Incentivized

• Reputable website scanner, which verify and screen the traffic.
• The data mapping from OneTrust is another merit, very articulate.
• OneTrust offers the required assessment automation, very outstanding.
• Finally, OneTrust has the breach scan, and incident response.

Incentivized

• API driven capabilities offer a very easy way to connect your systems to their application.
• It was mostly intuitive to figure out what needed to be configured.
• I like how responsive they have been and how they have been able to outline the entire process for us from the start to the end.

Incentivized

• There are irritating inconsistencies in the user interface between the various modules
• Reporting capabilities are limited
• The platform does not reveal its secrets easily. You will be rewarded if you can allocate a team member to specialize on the platform.

Incentivized

• In my opinion, they make it very hard to contact them when you need something.
• In my experience, they write their contracts to make it difficult to cancel service.
• In my experience, they have no policy for refunds in addition to their [...] contacts.

Great to maintain for our SOC2 compliance and further compliance evolutions

Incentivized

In my experience, the sheer volume of tasks and to do items is a bit inundating.

We have used a shared hosted tenant managed by OneTrust for over three years with only one instance of a lengthy (4+ hours) unexpected outage which happened years ago.

Incentivized

Always available

Incentivized

We selected a European hosting location based on our initial use case, however, our usage of the OneTrust platform has expanded globally to where the majority of users sit in the Americas or Asia-Pacific regions. There is a noticeable lag when navigating the platform for users located far away from the hosting location.

As a user, you can mitigate any sluggish response time by the aggressive use of multiple browser tabs. I commonly have one tab open on an Inventory detail screen, another tab on an Assessment window, and maybe another tab on a customized inventory list screen. If one tab is slow I hop to another tab and work on that tab while the first tab responds.

Incentivized

Fast although the agent may take some time to reping on checks

Incentivized

Both our customer rights access and cookie consent advisors were responsive and helpful in getting us trained on using the platform and the various assets implemented on our website. We had multiple training sessions that were more than enough in getting all of the users on our team familiar with what we needed to do.

Incentivized

Direct support and replies in a timely manner to tickets submitted

Incentivized

Pretty straight forward

Incentivized

An implementation specialist worked with us remotely during our initial deployment. Due to the diverse geographic locations of my organization's participants, the implementation and training had to be done remotely (this was before COVID-driven remote work).

The implementation specialist was knowledgeable and helpful but to really get full benefit from the platform I encourage organizations to dedicate a specialist within your company to really study and learn the platform.

Incentivized

Straight Forward

Incentivized

Pretty seemless and did it almost entirely myself

Incentivized

First, when we compare OneTrust Privacy and Data Governance Cloud to the software I mentioned above, OneTrust Privacy and Data Governance Cloud software was way more affordable than the other 2. Also, along with the other 2 software, OnTrust was one of the most user friendly tool/software we've ever used.

Incentivized

Vanta's reporting was far superior, the price was competitive but my engineers running the project said that working with vanta would save them significant amount of time. Secondly vanta had more integrations so they could plug directly into the systems we use!

Incentivized

The platform has exceptional capabilities to customize the user interface, reports, and recorded information. In most cases, the customization can be compartmentalized so that if the customization performed for Department A is determined to not impact Department B, the customization can be hidden from Department B.

We have four different departments using the IT Risk Management module. Three departments share their work in what we call the 'shared data risk management zone'. Another department is using IT Risk Management for a bespoke portfolio risk management task, and the customization for this department is largely hidden from the other departments.

Incentivized

Works as intended

Incentivized

• Populates metadata into a centralized and easily searchable data catalog.
• Ensures data regulatory requirements are understood.
• Orchestrates data governance activities.
• Monitors and flag violations across our data ecosystem.

Incentivized

• We were able to close contracts because we had our SOCII compliance in place
• SOCII certification process was reduced by at least 80%

Incentivized