Privacy & Data Protection

Combining our data-privacy principles-based approach and our data-privacy model, we deliver compliant, sustainable privacy programs that not only achieve compliance with GDPR and CCPA but are scalable and flexible enough to grow with your business and keep up with this dynamic area of law. Depending on the needs of your business, BRG can provide advice and support or can serve as your outsourced privacy officer or EU data protection officer, building your program from the ground up and providing ongoing services to fulfill data-subject requests, respond to potential data breaches, and otherwise manage the day-to-day requirements of maintaining compliance.

BRG prides itself on providing intelligence that works. We begin by rolling up our sleeves and mapping your systems and processes that involve personal data, and we work from there to create a right-sized, effective program for your business. Our simple, self-correcting, and sustainable “Discover-Build-Communicate-Evaluate” model can be tailored to your specific business environment.

Discover

• Gap assessment
• Data and application mapping
• Business process map
• Multidirectional data flows
• Identify proper program structure

Build

• Program model
• Register of processes
• Data-subject request fulfillment strategy
• Manual or application-based tools
• Data-disposition model
• Contract terms

Communicate

• Policies and procedures
• Consent and notices
• Training and awareness
• Risk and mitigation reporting

Evaluate

• Metrics to establish monitoring
• Audit data-subject access request fulfillment