Bring Your Own Key Solutions for US Data Transfers


Green Globe Icon for Built to Scale Card on Carbon Accounting

Securely Facilitate International Data Transfers

Overcome Schrems II cross-border data transfer concerns by implementing BYOK as a supplementary data protection measure.

Shield

Take Control Over Your Data

Maintain control to create, disable, and revoke access to your encryption keys, protecting your data subjects’ information from unauthorized access by external parties.

Reliable Integrations Icon

Choose How You Deploy

Leverage a private or multi-tenant cloud environment without sacrificing security. Gain the flexibility to migrate at any time.

Pencil and Paper Icon Representing Full Customization

Apply the Latest SCCs

Benefit from organizational measures by default based on EDPB Guidelines and European Commission updated Standard Contractual Clauses (SCCs) including adoption of the new SCCs, Transfer Impact Assessment processes, and more.

Schrems II Solutions for Data Exporters


Cross-Border Vendor Transfer Example

Know Your Cross-Border Data Transfers and Vendors

Centrally document and visualize all international data flows, related data importers, and the third countries involved. Take a risk-based approach to prioritize transfers, like those relying on SCCs.

Assess third countries, identify those without adequate protection, and send additional TIAs to vendors as necessary. Access vendor transparency reports, certifications, and pre-filled TIAs from the OneTrust platform.

Data Transfer Risk Details Example

Mitigate Risk and Adopt Supplementary Measures

If the data transfer tool is considered ineffective, use pre-built templates based on the EDPB guidelines to determine the additional supplementary measures that can be adopted to mitigate data privacy risks. Track controls implemented and contract updates against the centralized vendor record.

Inventory Details Example

Continuously Monitor and Re-Evaluate

Monitor third country developments and evaluate new transfers to ensure that supplementary measures remain effective for the transfer of personal data and data importers honor their commitments. Manage the full third-party vendor lifecycle, including on-boarding and off-boarding.

Schrems II Solutions for Data Importers


Example of Building Trust Profiles on the OneTrust Platform

Build Your Trust Profile

Generate transparency reports, SCCs, and other privacy documentation with editable templates. Publish policies and notices directly to your website and maintain changes over time from a single platform. Publish key documentation to the OneTrust Third-Party Risk Exchange, making it visible to thousands of our customers. You can securely share your Trust Profile and control access permissions to the documentation.

TIA Autocomplete Example

Automate Transfer Impact Assessment (TIA) Responses

Centralize all incoming TIAs and other assessment requests. Answer TIAs once and automatically answer new TIAs (or any questionnaire) by autocompleting answers using AI, NLP, and ML technology.

Get Started Today with Schrems II Solutions

Request a demo to learn more about how OneTrust can support your journey toward Schrems II compliance.

Request Demo

You Might Also Be Interested In


AUG 10, 2022
Consent and Preferences

Complete Guide to First-Party Data

AUG 25, 2022
ESG

Planetly: New Name, Expanded Mission

AUG 08, 2022
Consent and Preferences

How to Transform Healthcare Marketing and Increase Business Growth

AUG 03, 2022
Consent and Preferences

Preparing for the Cookiepocalypse

AUG 03, 2022
Consent and Preferences

Succeeding in a Privacy-First World with Alex Cash

AUG 03, 2022
GRC

4 Ways Trust as an IT and Security Function Maps to the Human Trait

AUG 25, 2022

Insights & Analytics: Digging into the Data to Measure and Accelerate Trust Programs

AUG 18, 2022
Privacy Management

Third-Party Risk and the U.S. Privacy Landscape: The Top 5 Things You Need to Know

Onetrust All Rights Reserved