Building a Privacy & Security Compliance Program

Today, companies that conduct market research often face significant scrutiny from consumers and regulators. In addition to knowing when and how to effectively reach consumers in a compliant manner, it is important to take steps to protect consumer data. Often the best way for a business to reduce the risk of cyber attack and data breach is to prepare for it in advance. We will discuss the cyber risks market research companies face as well as how to develop legally compliant policies and procedures to mitigate those risks, such as governance frameworks, incident response plans, vendor management agreements, insider threat policies, and training. We will cover: • assessing and classifying client data • identifying required and recommended data and network safeguards • evaluating organizational governance of information, people, and policies • reviewing training requirements and content for compliance with existing standards • assessing accountability • reviewing vendor management