As part of a series of announcements during TrustWeek, OneTrust’s annual user conference, we are excited to introduce enhanced automated data redaction capabilities for processing privacy rights requests.
Say goodbye to manual redaction when responding to privacy rights requests/DSARs! OneTrust is excited to introduce automated data redaction capabilities to simplify your DSAR response process and reduce the risk of unintentional data breaches.
Most of the world’s privacy laws give individuals the right to make requests about their data (e.g. Data Subject Access Requests [DSAR] in GDPR or “Do Not Sell” in CCPA). However, when responding to DSARs, organizations must make sure they’re not sharing private information as a part of the request – and inadvertently causing a data breach.
Automated data redaction plays a vital part in DSARS, allowing organizations to quickly respond to DSARs while minimizing the risk of releasing personal information and causing a data breach.
Why is Data Redaction for DSAR Important?
Privacy regulations around the world give users more control over their data with privacy rights, which means it is increasingly important for organizations to employ an efficient and secure process for managing these requests.
For example, if an employee is making an access request for their emails, thousands of emails could potentially be in scope. In those emails are thousands of other people’s emails, telephone numbers, and other PII (personally identifiable information). So, it is critical that non-relevant PII and confidential information is removed (redacted) before the search is sent back to the employee. If this information isn’t redacted it could result in a data breach.
The redaction process is often manual and time-consuming. Today most privacy teams are doing this in PDF software or even by printing documents and using a black marker! This is where OneTrust’s automated data redaction software helps.
How Can OneTrust Automate Data Redaction?
OneTrust already supports various methods of data redaction as part of our Privacy Rights solution, but now we are excited to introduce our enhanced data redaction capabilities.
Let’s take a look at how the redaction process works:
- Through a systematic query of your email server, relevant email content is added to the data subject results summary
- The data is then scanned and classified by OneTrust Athena(TM) using Natural Language Processing algorithms, and automatically redacts where necessary in the data
- Teams can review the redactions on the Results Summary
- The reviewer/approver can make any necessary modifications
- The results summary report can be securely shared with the data subject through an encrypted messaging portal
OneTrust enhanced data redaction is the easiest way to reduce the manual overhead of data redaction and aggregation involved in privacy request fulfillment as well as the risk of inadvertently causing a data breach.
To learn more register for TrustWeek or register for the webinar: Privacy Rights: Take Your Privacy Rights (DSAR) Process to the Next Level with Enhanced Data Redaction taking place on Tuesday, October 27 at 11:00 am EDT / 3:00 pm GMT. To read all of our TrustWeek news, check out our blog.