Products

Personal Data Discovery

Data Discovery

AI-based solution designed to automate personal data discovery and classification

Data Inventory

Discover personal data across multiple systems in the cloud or on-premise

Privacy Program Automation

Data Processing Inventory (ROPA)

Harbor cooperation between DPO, Legal Services, IT and Marketing

Data Subject Request

Turn data subjects request into an automated workflow with a clear insight into data every step of the way

Assessment Automation

Collaborate with stakeholders and manage DPIA and LIA in real-time with Assessment Automation

Third Party Management

Guide your partners trough vendor management process workflow

Risk Management

Identifying the risk from the point of view of Data Subject

Incident Management

Quickly respond, mitigate damage and maintain compliance

Consent and Preference Management

Data Removal orchestration

Data Removal

Introducing end-to end automation of personal data removal

Services

State-of-Privacy-Assessment (SOPA)

Support

Professional Services

Pricing plans

Talk to sales

Resources

Latest Blog posts

Protecting personal data

11 steps to jumpstart your compliance process

15/11/2023

How to conduct Legitimate Interests Assessment (LIA) ?

15/10/2023

Learn the terms

Retention period

Privacy by design

Third party

Breach disclosure

European Data Protection Board (EDPB)

Transparency principle

Data Quality Management

Records of processing activities

General Data Protection Regulation

Here you can find the official content of the Regulation (EU) 2016/679 (General Data Protection Regulation) in the current version. All Articles of the GDPR are linked with suitable recitals.

Latest papers

India’s Digital Personal Data Protection Act DPDP

13/10/2023

Saudi Arabia's Personal Data Protection Law PDPL e-book cover

Saudi Arabia’s Personal Data Protection Law PDPL

24/08/2023

Legal & Ethical Review & Mastering Informed Consent for Clinical Trial Studies

22/03/2023

Partners

Become a partner

About us

Careers

N

NIST Privacy Framework

The NIST Privacy Framework is a comprehensive set of guidelines and best practices developed by the National Institute of Standards and Technology (NIST) to help organizations manage privacy risks and protect individuals’ privacy.

The framework provides a common language, structure, and methodology for managing privacy risks, and it can be used by organizations of any size in any sector. It is based on a set of privacy principles that include:

Privacy Risk Management
Data Governance
Individual Participation and Empowerment
Transparency
Respect for Individual Privacy Rights, and
Innovation and Continuous Improvement.

The NIST Privacy Framework is designed to be flexible and adaptable to different organizations’ needs and can be used alongside other cybersecurity frameworks and best practices to create a comprehensive privacy and security program.

All glossaries

Access Control

Accountability principle

Accuracy

Anonymization

Article 29 Working Party

Audit trail

Authentication

Behavioral Advertising

Biometric Data

Breach disclosure

California Consumer Privacy Act (CCPA)

California Online Privacy Protection Act (CalOPPA)

CIA Triad

Clinical Trial Regulation (CTR)

Compliance

Consent

Cookie consent

Cookies

Cross border processing

Cybersecurity

Dark Data

Data Breach

Data Controller

Data Domain

Data Governance

Data Graveyard

Data interception

Data Minimization

Data Privacy

Data Processor

Data Protection Authority

Data Protection Officer

Data Quality Management

Data Removal

Data Retention

Data Subject

De-identifiable data

Defensive Data Strategy

Direct Marketing

e-Privacy Directive

Encryption

EU member states

EU-US Privacy Shield

European Commission

European Council

European Court of Justice (ECJ)

European Data Protection Board (EDPB)

European Data Protection Supervisor (EDPS)

Explicit consent

Fairness

FDPIC

GDPR fines

GDPR Principles

General Data Protection Regulation

Genetic data

HIPAA

Incident response

Information Privacy

Invisible processing

Keylogging

Lawfulness

Lead Supervisory Authority (LSA)

Legal Basis for Processing

Machine learning

NDPR/ Nigeria Data Protection Regulation

NIST Privacy Framework

NYOB

Offensive Data Strategy

Opt-in

Opt-out

Payment Service Directive (PSD2)

Personal data

Personal Information Protection Law (PIPL)

Privacy by default

Privacy by design

Privacy risk assessment

Pseudonymization

Records of processing activities

Retention period

Right of access

Right to be forgotten

Right to be informed

Right to data portability

Right to object to processing

Right to rectification

Right to restrict processing

Rights (per GDPR)

Rights in relation to automated decision making and profiling

Risk assessment

Risk management

Sensitive personal data

Shadow processing

Soft opt-in

Standard Contractual Clauses

Structured data

Third country

Third party

Transparency principle

Unstructured data

Virtual Private Network (VPN)

All / A / B

Access Control

Accountability principle

Accuracy

Anonymization

Article 29 Working Party

Audit trail

Authentication

Behavioral Advertising

Biometric Data

Breach disclosure

All
A
B
C
D
E
F
G
Glossaries
H
I
K
L
M
N
O
P
R
S
T
U
V

Access Control

Accountability principle

Accuracy

Anonymization

Article 29 Working Party

Audit trail

Authentication

Behavioral Advertising

Biometric Data

Breach disclosure

California Consumer Privacy Act (CCPA)

California Online Privacy Protection Act (CalOPPA)

CIA Triad

Clinical Trial Regulation (CTR)

Compliance

Consent

Cookie consent

Cookies

Cross border processing

Cybersecurity

Dark Data

Data Breach

Data Controller

Data Domain

Data Governance

Data Graveyard

Data interception

Data Minimization

Data Privacy

Data Processor

Data Protection Authority

Data Protection Officer

Data Quality Management

Data Removal

Data Retention

Data Subject

De-identifiable data

Defensive Data Strategy

Direct Marketing

e-Privacy Directive

Encryption

EU member states

EU-US Privacy Shield

European Commission

European Council

European Court of Justice (ECJ)

European Data Protection Board (EDPB)

European Data Protection Supervisor (EDPS)

Explicit consent

Fairness

FDPIC

GDPR fines

GDPR Principles

General Data Protection Regulation

Genetic data

HIPAA

Incident response

Information Privacy

Invisible processing

Keylogging

Lawfulness

Lead Supervisory Authority (LSA)

Legal Basis for Processing

Machine learning

NDPR/ Nigeria Data Protection Regulation

NIST Privacy Framework

NYOB

Offensive Data Strategy

Opt-in

Opt-out

Payment Service Directive (PSD2)

Personal data

Personal Information Protection Law (PIPL)

Privacy by default

Privacy by design

Privacy risk assessment

Pseudonymization

Records of processing activities

Retention period

Right of access

Right to be forgotten

Right to be informed

Right to data portability

Right to object to processing

Right to rectification

Right to restrict processing

Rights (per GDPR)

Rights in relation to automated decision making and profiling

Risk assessment

Risk management

Sensitive personal data

Shadow processing

Soft opt-in

Standard Contractual Clauses

Structured data

Third country

Third party

Transparency principle

Unstructured data

Virtual Private Network (VPN)