Welcome!

Microsoft Cloud Authors: Pat Romanski, Liz McMillan, Lori MacVittie, Elizabeth White, Yeshim Deniz

News Feed Item

TRUSTe and Promontory Launch Joint BCR Management Program

LONDON, February 11, 2013 /PRNewswire/ --

TRUSTe and Promontory today launched a joint BCR Management Program designed to make it quicker, simpler and cheaper for businesses to prepare for compliance with the Binding Corporate Rules (BCRs) regime, apply for authorisation from their Data Protection Authority to use BCRs for international data transfers within their organisation, and self-certify their ongoing BCRs compliance through the Program.

BCRs are designed to allow multinational companies to transfer personal data from the European Economic Area (EEA) to their affiliates located outside of the EEA in compliance with Data Protection Directive 95/46/EC. The most utilised current alternative to BCRs is the use of the model contractual clauses approved by the European Commission. However, in multinational companies with complex structures, there are drawbacks where hundreds of contracts may be required to cover transfers between all affiliates, and keeping those contracts up to date can be difficult and time consuming.

The new TRUSTe-Promontory BCR Management Program will be delivered and managed by TRUSTe, the leading global provider of data privacy management solutions, based on a framework developed by Promontory, a global regulatory compliance consulting firm. The framework will help companies build their BCR application in a streamlined and consistent manner. Once the application is approved by the relevant Data Protection Authorities, the company will remain a member of the TRUSTe-Promontory BCR Management Program to evidence and certify their ongoing compliance with BCR standards. This new program is designed to offer organisations the combination of TRUSTe's credibility and experience in developing privacy certification programs and Promontory's experience of European data protection regulation and addressing corporate compliance around international data transfers.

"As the challenges of ensuring both regulatory compliance and good privacy practices increase, BCRs are an ideal way for organisations to demonstrate compliance with European data privacy standards when transferring and using customer and employee personal information overseas. This new program we are launching with Promontory today should encourage more organisations to take advantage of the benefits of BCRs and demonstrate that they have good privacy practices at their heart of their business," said Danilo Labovic, EMEA Managing Director for TRUSTe.

Simon McDougall, Managing Director and Head of Promontory's Privacy Practice said: "I am delighted to be working with TRUSTe, who are global leaders in privacy self-regulation. In an ideal world, all international firms would use Binding Corporate Rules when moving personal data around their corporate group. However, many organisations currently see the application process as complicated and expensive. The TRUSTe-Promontory BCR Management Program will help make demonstrating BCR readiness cheaper, simpler and quicker. Members of the program will able to demonstrate their commitment to good privacy governance, as well as make their international data transfers easier."

Notes to Editors

1    TRUSTe is the leading global provider of data privacy management solutions, offering a broad suite of technologies and certifications to help companies build trust and increase engagement across their online channels, including websites, mobile apps, advertising, and cloud services. More than 5,000 companies, including top international brands like Apple, eBay, LinkedIn and Microsoft, rely on TRUSTe to build trust and address evolving and complex privacy challenges. TRUSTe® Certified Privacy Seal is widely recognised and trusted by millions of consumers worldwide as a sign of responsible privacy practices. For more information, please visit http://www.truste.co.uk

2    Promontory Financial Group, headquartered in Washington, D.C., is a global consulting firm for regulated companies. The firm specializes in solving regulatory, risk, controls, compliance, governance, capital, and liquidity issues. Promontory has offices in London, Atlanta, Brussels, Denver, Dubai, Hong Kong, Milan, New York, Paris, San Francisco, Singapore, Sydney, Tokyo, and Toronto. Eugene A. Ludwig, who served as U.S. Comptroller of the Currency under President Clinton, founded Promontory in 2001. Visit us at http://www.promontory.com and follow us on Twitter @PromontoryFG.

3    Binding Corporate Rules (BCRs) are designed to allow multinational companies to transfer personal data from the European Economic Area (EEA) to their affiliates located outside of the EEA in compliance with Directive 95/46/EC.

Applicants must demonstrate that their BCRs put in place adequate safeguards for protecting personal data throughout the organisation in line with the requirements of the Article 29 Working Party papers on Binding Corporate Rules.

Applicants apply to a Data Protection Authority (DPA) (decided by criteria related to their location and business) who acts as their 'lead authority'. If the lead authority is satisfied, it then circulates the draft BCRs to other European DPAs, where those countries are in scope of the application.

4    For TRUSTe EU media enquiries and interview requests please contact Eleanor Treharne-Jones at The Conversation Co. on +44(0)7811-093648 or +44(0)20-7812-0664 or e-mail [email protected]

5    For Promontory EU Media Enquiries please contact Alex Brown at Weber Shandwick Worldwide on +44(0)20-7067-0732 or [email protected]


SOURCE TRUSTe

More Stories By PR Newswire

Copyright © 2007 PR Newswire. All rights reserved. Republication or redistribution of PRNewswire content is expressly prohibited without the prior written consent of PRNewswire. PRNewswire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

IoT & Smart Cities Stories
The deluge of IoT sensor data collected from connected devices and the powerful AI required to make that data actionable are giving rise to a hybrid ecosystem in which cloud, on-prem and edge processes become interweaved. Attendees will learn how emerging composable infrastructure solutions deliver the adaptive architecture needed to manage this new data reality. Machine learning algorithms can better anticipate data storms and automate resources to support surges, including fully scalable GPU-c...
Machine learning has taken residence at our cities' cores and now we can finally have "smart cities." Cities are a collection of buildings made to provide the structure and safety necessary for people to function, create and survive. Buildings are a pool of ever-changing performance data from large automated systems such as heating and cooling to the people that live and work within them. Through machine learning, buildings can optimize performance, reduce costs, and improve occupant comfort by ...
The explosion of new web/cloud/IoT-based applications and the data they generate are transforming our world right before our eyes. In this rush to adopt these new technologies, organizations are often ignoring fundamental questions concerning who owns the data and failing to ask for permission to conduct invasive surveillance of their customers. Organizations that are not transparent about how their systems gather data telemetry without offering shared data ownership risk product rejection, regu...
René Bostic is the Technical VP of the IBM Cloud Unit in North America. Enjoying her career with IBM during the modern millennial technological era, she is an expert in cloud computing, DevOps and emerging cloud technologies such as Blockchain. Her strengths and core competencies include a proven record of accomplishments in consensus building at all levels to assess, plan, and implement enterprise and cloud computing solutions. René is a member of the Society of Women Engineers (SWE) and a m...
Poor data quality and analytics drive down business value. In fact, Gartner estimated that the average financial impact of poor data quality on organizations is $9.7 million per year. But bad data is much more than a cost center. By eroding trust in information, analytics and the business decisions based on these, it is a serious impediment to digital transformation.
Digital Transformation: Preparing Cloud & IoT Security for the Age of Artificial Intelligence. As automation and artificial intelligence (AI) power solution development and delivery, many businesses need to build backend cloud capabilities. Well-poised organizations, marketing smart devices with AI and BlockChain capabilities prepare to refine compliance and regulatory capabilities in 2018. Volumes of health, financial, technical and privacy data, along with tightening compliance requirements by...
Predicting the future has never been more challenging - not because of the lack of data but because of the flood of ungoverned and risk laden information. Microsoft states that 2.5 exabytes of data are created every day. Expectations and reliance on data are being pushed to the limits, as demands around hybrid options continue to grow.
Digital Transformation and Disruption, Amazon Style - What You Can Learn. Chris Kocher is a co-founder of Grey Heron, a management and strategic marketing consulting firm. He has 25+ years in both strategic and hands-on operating experience helping executives and investors build revenues and shareholder value. He has consulted with over 130 companies on innovating with new business models, product strategies and monetization. Chris has held management positions at HP and Symantec in addition to ...
Enterprises have taken advantage of IoT to achieve important revenue and cost advantages. What is less apparent is how incumbent enterprises operating at scale have, following success with IoT, built analytic, operations management and software development capabilities - ranging from autonomous vehicles to manageable robotics installations. They have embraced these capabilities as if they were Silicon Valley startups.
As IoT continues to increase momentum, so does the associated risk. Secure Device Lifecycle Management (DLM) is ranked as one of the most important technology areas of IoT. Driving this trend is the realization that secure support for IoT devices provides companies the ability to deliver high-quality, reliable, secure offerings faster, create new revenue streams, and reduce support costs, all while building a competitive advantage in their markets. In this session, we will use customer use cases...