TrustArc at a Medium-sized Digital Organization
Use Cases and Deployment Scope
TrustArc is used to support requests for users to opt-out of data sharing, access their data, or delete their data, pursuant to CCPA, GDPR, and other forms of privacy law. TrustArc provides the mechanism for triaging user requests as they come in, as well as means for initial verification of email addresses that submit said requests.
Pros
- Email verification
- Frontend UI
- Flexible configurations
- Easy-to-follow audit trail - each step of the process is clearly defined
- Integrated process flow - all communication back to data subject is handled through TrustArc
Cons
- Notification schemes - allowing different access levels to be notified when certain processes occur
- Two-factor authentication upon login is a desirable feature not implemented
- Standardized reporting on home dashboard
Most Important Features
- Logging of data subject requests
- Initial email verification of these requests
- Communication back to data subject on the status of their request
- Cookie management on site - allows users to select their cookie preferences
- GDPR and CCPA compliance
Return on Investment
- Allow organization to be compliant with data privacy laws is a requirement in 2021
- Flexible offering allows for control of both digital (cookie) and database record requests
- Sunk cost - organization requires this type of program, TrustArc is an established vendor in this space
Alternatives Considered
OneTrust
Other Software Used
Snowflake, Tableau Desktop, Microsoft Teams
