TrustRadius: an HG Insights company
Back to Overview

OneTrust Tech Risk & Compliance Reviews and Ratings

Rating: 9.2 out of 10
Score
9.2 out of 10

Reviews

2 Reviews

A trusty platform if you provide the logic

Rating: 7 out of 10
Incentivized

Use Cases and Deployment Scope

We utilize OneTrust for 3rd party risk management and to dictate the frequency of review. Using a risk matrix new vendors brought into the platform are assigned a risk level based on data sensitivity and the inherent risk of the vendor. We then use OneTrust to automate information gathering and to schedule reassessments based on risk category.

Pros

  • Centralized repository for documentation of vendor risk.
  • Allows for customizable risk metrics to define inherent risk.
  • Repeatable, defined process for vendor assessments.

Cons

  • Documentation chasing for assessments is not as automated or hands-off as demos made it seem.
  • Getting custom risk matrix set up required professional onboarding.
  • Platform is less than intuitive.
  • Pricing is module dependent and demos do not highlight which module is included in which workflow.

Likelihood to Recommend

OneTrust provides a repeatable and defined process for vendor assessments but should be adapted to your organization. OneTrust functions well for a centralized document repository. The pricing of modules and what modules are required for workflows to function fully should be better defined. Automated assessments can wind up in spam filters and should be communicated outside of the platform prior to sending to the vendor.

VU
Verified User
Analyst in Information Technology (5001-10,000 employees)
Vetted Review
OneTrust Tech Risk & Compliance
3 years of experience

OneTrust GRC for Mid-Scale Enterprise

Rating: 8 out of 10

Use Cases and Deployment Scope

I had evaluated many GRC but I like OneTrust mini GRC as it is user-friendly, easy to deploy and easy to integrate. The beauty of this software is that, we can implement one by one module (e.g. Vendor/Third-party risk management, Cookie Compliance, IT Risk management etc...). This is an excellent tool for Data privacy management.

Pros

  • Module wise implementation.
  • Very reasonable price structure.
  • Easy and speedy to implement.
  • Product roadmap.

Cons

  • Policy management workflow and repository management.
  • IT risk management.
  • Report automation.

Likelihood to Recommend

OneTrust is well suited for mid-scale IT industries and mid-size infrastructure. OneTrust is excellent in Data privacy and Cookie compliance. And lLess appropriate for large-scale enterprise risk management. It is SSO and ADFS enabled. OneTrust is having great capabilities to integrate with other APIs and third-party security software.

HS
Hiral Shah
Senior Manager Informaiton Security and Compliance in Information Technology at Acqueon Technologies (501-1000 employees)
Vetted Review
OneTrust Tech Risk & Compliance
5 years of experience