© 2019 RSM US LLP. All rights reserved.
Privacy Gap Assessment
Helping ensure you maintain compliance and protect sensitive data
It is important for organizations to proactively review the legislative landscape, contractual obligations and customer expectations to verify their privacy and safeguarding programs. Securing personally identiﬁable information (PII) and achieving compliance require more than scanning and annual audits. True compliance is achieved when organizations are able to make the right security decisions throughout the year.
Based on RSM’s experience, many organizations are not fully compliant with privacy laws and regulations. Therefore, we developed a cost-effective approach that will provide you with the most options and ﬂexibility while becoming compliant with various laws. Our approach maps out critical information processes and determines if regulatory controls have an impact on your business.
The privacy gap assessment benchmarks your organization against applicable laws. The goals are to:
- Understand rapidly evolving privacy compliance obligations
- Develop an enterprise-wide strategy and plan for achieving compliance
- Implement required operational changes
- Train employees on threats and compliance obligations
- Maintain compliance throughout the year
This results in a more efficient execution of your privacy compliance efforts and helps you avoid the penalties and risks that may come from noncompliance.
Evolving U.S. federal law provides protections to consumer information, such as Health Insurance Portability and Accountability Act (HIPAA), Gramm-Leach- Bliley Act (GLBA) and Fair and Accurate Credit Transactions Act (FACTA). In addition, many states have enacted their own laws providing additional protection, and some organizations may also be subject to various international laws. In order to avoid penalties for noncompliance, a privacy gap assessment helps you assess your current state of conformity.