Enterprise-Grade Platform Integrates with Existing Marketing Technologies to Implement Compliance with Global Privacy Regulations
OneTrust, a global leader in enterprise privacy management software that supports compliance with data privacy regulations – including the EU General Data Protection Regulation (GDPR) and ePrivacy Directive – recently announced the availability of a Universal Consent and Preference Management solution.
Under the GDPR, consent is one of six legal grounds that marketers can rely on to process personal data. Given the stringent criteria required for valid consent under GDPR, collecting proper consent in practice will be challenging. However, driven by the proposed text of a new ePrivacy Regulation, which would make consent the sole legal basis for processing in most marketing scenarios, paired with public statements made by various European regulators encouraging consent, many organizations are moving towards implementing a consent-based GDPR compliance strategy for marketing activities.
Consent has very specific requirements in GDPR that organizations must be mindful of if they are selecting it as the legal basis for processing. For consent to be valid, it must be freely given, specific, informed and unambiguous, and given with a clear affirmative action. As organizations collect personal data on web forms, mobile apps, paper forms, phone calls, emails, and more, the task of managing the validity of all consent interactions becomes increasingly complex. Additionally, in GDPR, the burden falls on the controller organization to prove the consent is valid, which requires consent records to be maintained to show who consented, when they consented, how they consented, and what they were told at the time. Maintaining an accurate audit trail of valid consent is becoming increasingly important and difficult, specifically within marketing departments.
OneTrust’s Universal Consent and Preference Management tool simplifies these challenges and helps organizations collect valid consent. OneTrust serves as the central consent database, adaptable to different consent models, jurisdictions, frameworks, and sectors.
OneTrust integrates into an organization’s existing marketing and IT technologies to manage the entire consent lifecycle, from collection to withdrawal.
- Integrate OneTrust into existing consent collection points, including web forms, mobile apps, emails, support calls, and paper forms, to collect and generate a record of valid consent
- Enable data subjects with greater visibility and control over marketing communication settings with a tailorable preference center
- Centralise consent records to demonstrate compliance, and enable high-level executive dashboards, or granular reporting for internal or regulatory audits
- Use the OneTrust REST API, SDK, and data feeds to sync consent and preference settings with your existing marketing technologies, such as Customer Relationship Management (CRM), Marketing Automation Platforms (MAP), Content Management Systems (CMS), Data Warehouses, and Identity Management applications
The Universal Consent and Preference Management solution is a critical component of the OneTrust Marketing and Web Compliance product suite, which also includes solutions for Cookie Compliance and Website Scanning, Data Subject Rights, and Policy and Notice Management. The solutions are fully integrated into the OneTrust Privacy Management Software platform, one of the world’s most prevalent technologies to support and implement a comprehensive privacy programme.
OneTrust CEO and Fellow of Information Privacy (FIP), Kabir Barday informed, “Establishing and documenting the validity of consent is among the most widely discussed topics for marketers ahead of the impending overhaul of EU privacy laws. OneTrust’s ability to deliver innovative solutions that address specific needs for marketers demonstrates our commitment to simplifying compliance throughout the entirety of an organization. As more guidance becomes available, OneTrust will continue developing features and solutions to operationalize privacy processes.”