Privacy Services

Privacy services to help your organization understand its regulatory exposure, identify gaps in compliance, and implement tailored solutions to meet your compliance requirements.

Ready to Get Started?

Our team of professionals is ready to dive in and collaborate with your team

RISCPoint provides industry expertise in guiding clients in the implementation of Privacy Programs, as it pertains to State, Federal, and Regulatory Privacy compliance requirements.

Our team of experienced Privacy experts can assist with any State, Federal, or Regulatory requirements in which you may need to comply.

RISCPoint can conduct Privacy workshops to identify potential exposure to State, Federal, or Regulatory requirements through implementing best-practices controls to meet multiple regulatory requirements. Our professionals stay current on any developments in the Privacy landscape so we can assist our clients with achieving and maintaining compliance with new regulatory requirements, such as the California Consumer Privacy Act (CCPA) or the New York SHIELD Act, or conducting capabilities and maturity assessments through the lens of the National Institute of Standards and Technology (NIST) Privacy Framework or the American Institute of Certified Public Accountants (AICPA) Privacy Management Framework.

With the complexity of the environment and breadth of the services, we highlight how we can help your organization through the illustrative Engagement previously completed by RISCPoint below:

An organization within the technology sector (SaaS) has recently received a data processing agreement (DPA) from a prospective client as a component of the contracting phase that dictates the organization must be compliant with the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). The organization does not have operations that are based within the European Union (EU) or California and does not understand why the prospective client is dictating a requirement to be compliant with something that they believe does not apply to them.


RISCPoint was engaged to help the organization understand the varying requirements of implementing a leading practices Privacy program that maps to multiple regulatory requirements. The RISCPoint team was able to assess the organization’s current Privacy posture to identify relevant internal controls that map to each of the regulatory requirements and identify potential gaps in compliance. Based on the identified gaps, RISC Point was able to create a Compliance Roadmap which allowed the organization to obtain an understanding of the critical gaps in the existing compliance program and put a timeline in place to achieve compliance. RISC Point was able to provide recommendations on how to implement effective controls that met each regulatory requirement and fit those recommendations into existing organizational processes. This allowed the organization to confidently respond to the prospective client that they were in fact compliant with the relevant regulatory requirements of the GDPR and the CCPA.

Start the Conversation

Work with our team of professionals to help find a tailored solution for your company

Contact Us