Score 8.5 out of 10


What is OneTrust?

OneTrust headquartered in Atlanta offers their privacy data management platform, the OneTrust Consent Management Platform, providing website compliance scanning, cookie management, publisher and mobile app compliance and related features, as well as legal research compliance platform DataGuidance, a technology offering...
Read more

Recent Reviews

Read all reviews

Reviewer Pros & Cons

View all pros & cons

Video Reviews

Leaving a video review helps other professionals like you evaluate products. Be the first one in your network to record a review of OneTrust, and make your voice heard!

Return to navigation


View all pricing

What is OneTrust?

OneTrust headquartered in Atlanta offers their privacy data management platform, the OneTrust Consent Management Platform, providing website compliance scanning, cookie management, publisher and mobile app compliance and related features, as well as legal research compliance platform DataGuidance, a…

Entry-level set up fee?

  • No setup fee
For the latest information on pricing, visit


  • Free Trial
  • Free/Freemium Version
  • Premium Consulting / Integration Services

Would you like us to let the vendor know that you want pricing?

16 people want pricing too
Return to navigation

Product Details

What is OneTrust?

OneTrust is an enterprise platform to operationalize trust, boasting more than 12,000 customers, including half of the Fortune Global 500, as users of OneTrust to make trust a competitive differentiator, implementing central agile workflows across privacy, security, data governance, GRC, third-party risk, ethics and compliance, and ESG programs.

The OneTrust platform is backed by 150 patents and powered by the OneTrust Athena™ AI and robotic automation engine, and capabilities include:
OneTrust Privacy - Privacy Management Software
OneTrust DataDiscovery™ - AI-Powered Discovery and Classification
OneTrust DataGovernance™ - Data Intelligence Software
OneTrust Vendorpedia™ - Third-Party Risk Exchange
OneTrust GRC - Integrated Risk Management Software
OneTrust Ethics - Ethics and Compliance Software
OneTrust PreferenceChoice™ - Consent and Preference Management Software
OneTrust ESG – Environmental, Social & Governance Software

OneTrust Videos

With the increase in #privacy laws and rapidly evolving technological landscape customer trust is more important than ever. While privacy and personalization may seem to have competing priorities this is far from the case. OneTrust PreferenceChoice helps #marketers comply with...
 Show More
Our suite of applications will streamline your ethics & compliance management and help you operationalize your values. Individually, they’re best-of-breed solutions; together, they’re the future of the industry.
Implement a privacy-first, customer-centric approach to #advertising, #marketing, and #sales activities, collecting user consent and preferences across channels, domains, and devices. Learn more about OneTrust PreferenceChoice at:
Bridge the gaps in monitoring external stakeholders & the potential risk to your business. Build a #risk management program in line with your #GRC strategy and business objectives. Learn more here:
Data governance provides businesses with a way to not only know what data they have but where they have it and who has access to it. Organizations with data governance solutions in place are better positioned to have an objective, data-based insights that allow them to make mo...
 Show More
OneTrust is the #1 fastest-growing company on Inc. 500 and the category-defining enterprise platform to operationalize trust. More than 10,000 customers, including half of the Fortune 500, use OneTrust to make trust a competitive differentiator, implementing central agile work...
 Show More

OneTrust Technical Details

Deployment TypesSoftware as a Service (SaaS), Cloud, or Web-Based
Operating SystemsUnspecified
Mobile ApplicationNo

Frequently Asked Questions

OneTrust headquartered in Atlanta offers their privacy data management platform, the OneTrust Consent Management Platform, providing website compliance scanning, cookie management, publisher and mobile app compliance and related features, as well as legal research compliance platform DataGuidance, a technology offering to track changes to compliance law.

OneTrust starts at $0.

The most common users of OneTrust are from Enterprises (1,001+ employees).
Return to navigation


View all alternatives
Return to navigation


(1-8 of 8)
Companies can't remove reviews or game the system. Here's why
Score 7 out of 10
Vetted Review
Verified User
We utilize OneTrust for 3rd party risk management and to dictate the frequency of review. Using a risk matrix new vendors brought into the platform are assigned a risk level based on data sensitivity and the inherent risk of the vendor. We then use OneTrust to automate information gathering and to schedule reassessments based on risk category.
  • Centralized repository for documentation of vendor risk.
  • Allows for customizable risk metrics to define inherent risk.
  • Repeatable, defined process for vendor assessments.
  • Documentation chasing for assessments is not as automated or hands-off as demos made it seem.
  • Getting custom risk matrix set up required professional onboarding.
  • Platform is less than intuitive.
  • Pricing is module dependent and demos do not highlight which module is included in which workflow.
OneTrust provides a repeatable and defined process for vendor assessments but should be adapted to your organization. OneTrust functions well for a centralized document repository. The pricing of modules and what modules are required for workflows to function fully should be better defined. Automated assessments can wind up in spam filters and should be communicated outside of the platform prior to sending to the vendor.
Score 8 out of 10
Vetted Review
Verified User
I had evaluated many GRC but I like OneTrust mini GRC as it is user-friendly, easy to deploy and easy to integrate. The beauty of this software is that, we can implement one by one module (e.g. Vendor/Third-party risk management, Cookie Compliance, IT Risk management etc...). This is an excellent tool for Data privacy management.
  • Module wise implementation.
  • Very reasonable price structure.
  • Easy and speedy to implement.
  • Product roadmap.
  • Policy management workflow and repository management.
  • IT risk management.
  • Report automation.
OneTrust is well suited for mid-scale IT industries and mid-size infrastructure. OneTrust is excellent in Data privacy and Cookie compliance. And lLess appropriate for large-scale enterprise risk management. It is SSO and ADFS enabled. OneTrust is having great capabilities to integrate with other APIs and third-party security software.
Wiliam de Faria | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
We use it as managed by the Data Privacy Implementation Program (LGPD and GDPR). We needed a tool that was easy to use and that gave corporate users full control over processing personal data and reporting compliance with the law. OneTrust, being SaaS, provides fast availability, a smooth navigation experience for the end-user, and powerful tools such as Data Inventory Automation, Assessment Automation, Risk Control, and Privacy Rights (DSAR) Automation.
  • Data Mapping
  • Assessment Automation
  • Data Catalog
  • Risk Management
  • Integration API
  • Data Rights
  • Data Mapping integrated with large databases.
  • Data Discovery speed, today is slow and does not integrate all databases.
  • Relationship between Treatment and Risk, today the risk is related to the control and active and not to the treatment.
  • Data Catalog associated with a database table and not just an asset.
I strongly recommend it for general management of personal data privacy programs and risk and contract management, it complies with all major world legislation in addition to being easy and fast. Not recommended for data discovery still requires refinement.
Score 10 out of 10
Vetted Review
Verified User
To achieve the culture of privacy as a priority, we implemented OneTrust as a technology platform that not only embeds this policy but also enables employees to efficiently carry out their responsibilities in roles-based and centralized databases. From a legal perspective, it helps us to be compliant and help mitigate the risks for the company in terms of data protection. The tool is accessible from every level and allows us to see everything in our privacy program at once
  • Manages our global privacy compliance efforts.
  • Provides central data located outside of excel files and paper for all data assets and maps within the company.
  • AI-powered data discovery technology to discover and classify the data within.
  • Manages our privacy program's internal workflows, reporting, and tasks.
  • I had a hard time trying to figure how to save the cookie settings correctly.
  • Integrate OneTrust with other systems is not automatic.
Companies across the globe are looking to automate solutions to support their privacy initiatives. With a tool like OneTrust, we have fully ramped up privacy initiatives and GDPR compliance efforts. OneTrust is the global leader in privacy management and marketing compliance software.
Joy Ann | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
OneTrust is used by several departments, for data access, collection, analysis, and synthetic storage. Besides, OneTrust has reliable templates, which guide the nature of the procedures necessary for executing different processes. Again, OneTrust offers the standard website compliance screen, which verifies the details and the traffic from the internet. Further, OneTrust offers data mapping, which is an efficient procedure for modeling and offering articulate profiling. Finally, the customer's details are collected, reviewed, and scanned for the required needs.
  • Reputable website scanner, which verify and screen the traffic.
  • The data mapping from OneTrust is another merit, very articulate.
  • OneTrust offers the required assessment automation, very outstanding.
  • Finally, OneTrust has the breach scan, and incident response.
  • Price details for OneTrust are above the average standard.
  • No mobile version of OneTrust in the form of an application.
  • The deployement procedure for OneTrust is through SaaS.
OneTrust offers the monitoring, the assessment, and the verification process of data, a formal way of ensuring the results outlined are correct, understandable, and confined. Besides, the policy and the website scanners from OneTrust are incredible, virtual, and concrete. Besides, OneTrust outlines the risk management options, with the customer mapping and taking the required assessments. Lastly, websites and cookies are efficiently scanned and made efficient for concrete business management.
Score 10 out of 10
Vetted Review
Verified User
OneTrust is used by multiple departments at my organization as a risk management platform. Certain departments cooperate in managing data risk; other departments use the platform capabilities as a risk management workbench for their portfolios. The business problems solved by the OneTrust are:
  1. to reduce the cost of maintaining and improving our data protection practices,
  2. act as the source of truth for the current state of our risk mitigation for various portfolios,
The key to your governance/risk management program is likely to be the expertise of your governance/risk management specialists. The OneTrust platform can and should be viewed as a means to enhance and amplify its capabilities.

  • Extremely powerful and flexible platform
  • Well thought out system design. It is logical and makes sense.
  • The company is very responsive to requests for help.
  • There are irritating inconsistencies in the user interface between the various modules
  • Reporting capabilities are limited
  • The platform does not reveal its secrets easily. You will be rewarded if you can allocate a team member to specialize on the platform.
The OneTrust platform is well-suited to align various departments that have a shared responsibility; for example, if Data Privacy and Information Security are separate at your organization, the platform can be used to nudge these teams to collaborate, for example via a shared questionnaire.

The OneTrust platform is also useful to ensure a consistent level of review is performed if your organization follows a model of governance specialists (ex: InfoSec, Privacy, Data Protection teams) reviewing and advising technical and commercial teams on processing personal data. By using the platform capabilities you can standardize the review process, which produces a consistent experience for the technical and commercial teams requesting review and advice from the governance specialists.
  • Online training
  • no training
We have raised over 100 cases over 40 months for multiple reasons, including but not limited to:
  1. problem resolution
  2. understand the platform better
  3. request an enhancement
In every case the response has been professional, prompt, helpful and appropriate. Only two cases were not resolved to my satisfaction, related to design decisions that I did not agree with. The Analysts assigned are prompt and well-trained; problems are solved QUICKLY!
Score 8 out of 10
Vetted Review
Verified User
Percona uses OneTrust to ensure GDPR compliance; it is primarily used by the security and compliance team for data mapping, data subject access requests, vendor risk management, and incident response modules, all of which are necessary to ensure compliance with the GDPR, other applicable privacy regulations, and information security frameworks (such as ISO 27001).
  • Data mapping for internal and external data transfers.
  • Listens to customer feedback and incorporates requests into new releases.
  • Provides a customizable instance that can be configured to suit the specific needs of a customer.
  • Vendor risk management could be expanded to include lifecycle management tools (such as contract repositories).
  • Some modules need to be customized in order to function correctly, rather than being useful out of the box.
  • The modules lack pre-configured workflows, so there can be a lot of time spent on customized configuration.
August 31, 2020

Great Value

Score 9 out of 10
Vetted Review
Verified User
OneTrust is used by the marketing department to manage our requests for information access and information deletion under the guidelines of the California Consumer Privacy Act. We use the built-in templates and workflows to ensure we are addressing each step of the process in deleting or accessing a customer's information, as well as notifying them the process has been completed. We also use OneTrust to power the cookie consent pop-up for new visitors who come to our website.
  • Cookie consent pop-up on site was easy to implement.
  • Built-in workflows based on CCPA and GDPR help increase efficiency and limit set-up time.
  • Flexibility allows for multiple users to execute the tasks within their scope of work.
  • Price was very reasonable for the features provided.
  • Customizing tabs in workflows would be helpful, as they are not all always needed.
  • Customizing e-mail alerts--there are way too many.
  • Customizing content in e-mail alerts--they are vague and don't alert you to what exactly needs to be done.
OneTrust is well suited to our organization because it is cost-effective for the number of requests to access or delete information that we receive from customers. As we do not receive an overwhelming amount of requests and the workflows are comprehensive, it is a good fit for us. It is less appropriate if our volume of requests were to increase and cause the need for automation of executing the requests.
Both our customer rights access and cookie consent advisors were responsive and helpful in getting us trained on using the platform and the various assets implemented on our website. We had multiple training sessions that were more than enough in getting all of the users on our team familiar with what we needed to do.
Return to navigation