Fortune 1000 Global Organization Required a Global Privacy and Data Governance Compliance Program

Background & Challenges

A company with entities and assets established in the US, EU, APAC, and LATAM struggled to determine the best way to implement a global privacy program that was customized to their business, and it lacked the in-house privacy expertise to operationalize the program and continuously monitor and enhance its capabilities. 

Approach

BDO was engaged to lead and implement the client’s privacy program, including engagement with in-country operations resources to implement compliance, at both an enterprise and a local level. Activities included but were not limited to: Development or update of privacy notices, policies, and procedures; Administering privacy tools to maintain and create processes such as data mapping, data subject requests, and Privacy Impact Assessments (PIA); Contract negotiations with vendors and property owners; Data Protection Training; and Continuous engagement with ongoing projects and strategic transformations to advise and ensure privacy controls were considered and implemented.

Client Impact

BDO created a comprehensive privacy program plan and framework, prioritizing based upon the company’s risk profile. BDO’s deep experience enabled a holistic and thoughtful implementation of privacy capabilities and concepts that took the program to a new state of maturity. By demonstrating our understanding of the client’s needs, we were able to operationalize a privacy program that was right sized to the organization. As a result, the client has chosen to outsource its entire Privacy Office to BDO indefinitely.