OneTrust and the Cloud Security Alliance (CSA) announced a strategic partnership to equip the over 80,000 CSA members with the resources and tools needed for GDPR and global privacy law compliance. As a part of the partnership, OneTrust will offer CSA members a free Vendor Risk Assessment Online Platform with built-in CSA Consensus Assessment CAIQ, CSA Common Controls Matrix, and CSA GDPR code of conduct templates translated into a number of languages common in the European Union. OneTrust is also a founding member of the recently-announced Cloud Security Alliance GDPR Centre of Excellence.
The GDPR and other global privacy laws hold companies and their vendors jointly liable, resulting in an increased focus on vendors' data protection and compliance policies. OneTrust and CSA's partnership will equip vendor members of the CSA with the tools and resources required to achieve and maintain GDPR compliance in three main ways:
OneTrust will offer CSA members a free version of the OneTrust Vendor Risk Assessment module via an online platform. The SaaS edition of the OneTrust platform will provide vendor risk assessment automation capabilities using the CSA CAIQ framework, self-assessment and attestation capabilities using the CSA GDPR Code of Conduct, and built-in CSA Common Controls Matrix (CCM).
OneTrust will translate the CSA CAIQ, CCM, and GDPR code of conduct templates into a number of languages, including Danish, Dutch, French, German, Italian, Japanese, Portuguese, Romanian, Spanish, Swedish. These translated templates will better equip CSA members to operate in local markets.
OneTrust will serve as a founding member of the Cloud Security Alliance GDPR Centre of Excellence and on the advisory board, playing an active role in the CSA's strategy in Europe and the roadmap of CSA's GDPR capabilities.
"Our continued partnership with OneTrust will provide our members the tools and resources they need to maintain successful GDPR and privacy programmes," said Jim Reavis, CEO, Cloud Security Alliance. "We're excited to empower our members with their market-leading Vendor Risk Assessment module and give our members access to translated templates leveraging OneTrust's in-house global privacy translations team. Together we are enabling cloud vendors to maintain compliance and be successful across GDPR and other global privacy laws."
"We're proud to build upon our partnership with the CSA and provide their members with new resources for successful privacy and security teams," said Kabir Barday, OneTrust CEO and Fellow of Information Privacy (FIP). "Together we can provide members and customers with the industry's best in vendor risk management tools and templates for GDPR and global privacy law compliance."