OneTrust + Grant Thornton: The partnership to deliver a privacy program for a transport services client
For a Fortune 500 transport services organization that operates on this scale, technology was going to be fundamental to building their program, meaning choosing the right technology was vital.
OneTrust was considered from the very beginning as both parties were familiar with the technology. A UK subsidiary of the client implemented OneTrust for their GDPR compliance program with notable success, and Grant Thornton had championed several OneTrust implementations for other organizations with success.
A variety of companies were shortlisted, evaluated against Grant Thornton’s scorecard, which measured a range of criteria including data mapping, individual rights functionality, customization, bulk import, overall solution, user interface and vendor support.
OneTrust scored highest against all of Grant Thornton’s criteria, and was set apart by a clear track record for adaptability and agility: as the market’s needs developed so did OneTrust’s products. Implementing privacy technology that moves and grows with the industry is key for program longevity.
Standing out from the crowd, OneTrust offered maturity and breadth at a competitive price. Grant Thornton’s client needed a tool that would offer key functionalities in the most efficient way, not least of all the importing and exporting of data. Where many tools require a more substantial input on this task, the OneTrust tools enabled the client to maintain autonomy over this process. “The ability to import and export data was incredibly important, OneTrust enables this seamless process as part of its critical functionality,” said Lindsay.
OneTrust demonstrated all of their products, building a clear picture of how the selection of tools can help build a bespoke program to meet the client’s needs. The extra care and attention that the OneTrust team put into providing a detailed and personal experience in this tentative stage of the program was evident, and the use of a sandbox environment was incredibly beneficial and allowed Grant Thornton to run a number of test scenarios. These demonstrations to the client’s core team, made up of the project lead from the legal team, info-sec team and tech team, were vitally important as these were the people who would go on to use the product in their day-to-day roles.
Grant Thornton’s scorecard approach to vendor comparisons formed the basis for their presentation to the executive committee. The detailed approach meant the results of the comparison could easily be presented, and little convincing was needed as the results spoke for themselves. The key benefits that OneTrust brought to the table were great value and functionality, but what really set them apart from the crowd was the pace at which OneTrust develop their tools. The starting point was to look at the tools that would sit at the heart of the program, which were Assessment Automation, Data Mapping and Data Subject Access Requests.