Privacy Program Management
Building upon the capabilities provided by the pre-requisite Archer Data Governance use case, Archer Privacy Program Management is designed to help organizations identify and assess the privacy impacts and risks posed by data processing activities involving personally identifiable information (PII).
Archer Privacy Program Management is designed to enable organizations to group processing activities for the purposes of performing data protection impact assessments and tracking regulatory and data breach communications with data protection authorities. Chief privacy officers, data privacy officers (DPO), and privacy teams are also enabled to benefit from a central repository of information needed to demonstrate commitment to GDPR compliance around the organization’s privacy program.
Archer Privacy Program Management is designed to help organizations to improve how they manage personal data processing activities, document communications with regulators, and assess the privacy risk impact of managing PII. With better diligence and stronger programs in place, organizations are empowered to demonstrate conformance with compliance obligations. Establishing an effective privacy management program can also positively impact the organization’s bottom line, through reduced risk exposure to fines and penalties for non-compliance.
For the key features and benefits of this use case, see the Data Sheet on the Archer Community: https://community.rsa.com/docs/DOC-40093
How Privacy Program Management fits into a risk and compliance program
Privacy Program Management is a use case in the Regulatory & Corporate Compliance Management solution area. The following sections describe the use cases that Privacy Program Management requires as a prerequisite, which use cases you can upgrade to as your privacy program matures, and which use cases in other solution areas you can integrate for additional business context and functionality.
Prerequisite and next use cases
|
|
||
|---|---|---|
|
Data Governance
|
Privacy Program Management
|
Explore related use cases in this and other Solution areas. See the following section. |
Related use cases in other solution areas
|
Use Case |
Primary Purpose(s) of the Relationship |
|---|---|
|
|
The Policies application enables your organization to tag applicable policies for tracking identified safeguards and corporate policies against processing activities. The Authoritative Sources application enables your organization to tag control procedures and control standards with the applicable sections of privacy regulations to show compliance. |
|
|
The Data Breaches application allows your Privacy and Legal teams to have insight into breaches of personal or sensitive data that may need to be escalated to a regulator. Additionally, the entire Cyber Incident & Breach Response use case can help your organization understand, track, and manage security incidents and data breaches, especially as they relate to sensitive and personal data. |
|
|
These use cases can help your organizations manage your third party engagements and risk exposure. Managing a third party program is extremely important in protecting data and ensuring compliance with data privacy mandates. |
|
|
This use case can help your organization assure compliance of the various safeguards identified within the Data Governance and Privacy Program Management use cases. |
|
|
This use case can help your organization understand the risks facing your privacy program and manage them appropriately. |
Additional resources
The following resources are also available for this use case:
Get started