Extend Your Global Privacy Strategy through Binding Corporate Rules
TRUSTe-Promontory Binding Corporate Rules (BCR) Management Program is designed to:
- Make it quicker, simpler, and more affordable for companies to prepare for compliance with the Binding Corporate Rules (BCRs) regime;
- Apply for authorization from their Data Protection Authority to use BCRs for international data transfers within their organization; and
- Self-certify their ongoing BCRs compliance through the Program
What are Binding Corporate Rules?
Binding Corporate Rules (BCRs) are designed to allow multinational companies to transfer personal data from the European Economic Area (EEA) to their affiliates located outside of the EEA in compliance with Directive 95/46/EC. Currently, the most popular alternative to BCRs is the use of the model contractual clauses approved by the European Commission. However, in multinational companies with complex structures, there are drawbacks where hundreds of contracts may be required to cover transfers between all affiliates, and keeping those contracts up to date can be difficult and time consuming.
How Can TRUSTe-Promontory BCR Management Program Help Multinationals Comply with BCR Requirements?
The new TRUSTe-Promontory BCR Management Program will be delivered and managed by TRUSTe, the leading global provider of data privacy management solutions, based on a framework developed by Promontory, a global regulatory compliance consulting firm. The framework will help companies build their BCR application in a streamlined and consistent manner. Once the application is approved by the relevant Data Protection Authorities, the company will remain a member of the TRUSTe-Promontory BCR Management Program to evidence and certify their ongoing compliance with BCR standards. This new program is designed to offer organizations the combination of TRUSTe’s credibility and experience in developing privacy certification programs and Promontory’s experience of European data protection regulation and addressing corporate compliance around international data transfers.
TRUSTe Privacy Professionals
TRUSTe Privacy Services are delivered by our Privacy Consultants and Privacy Services Managers, a team of recognized data privacy experts with significant experience leading global privacy assessments for large enterprises. Our team has a unique hybrid background of legal, technology, business process, and project management experience. All are CIPP trained and many have law degrees, practiced in privacy and information law, are CIPP-certified, and have experience as privacy leaders and consultants for top companies like Yahoo!, American Express, IBM, Pfizer, Aventis, Kimberly-Clark, HSBC Bank, Hertz, Comcast, Citrix, Adobe Systems, Intel, Intuit, and Microsoft.
Together, our people deliver the most comprehensive suite of Privacy Services available, leveraging the power of TRUSTe’s state-of-the-art technology Platform. TRUSTe has specialized in Data Privacy Management for almost two decades. As the leading privacy brand, we’ve become one of the most experienced and innovative Data Privacy Management companies in the world. We have key regulatory relationships and are a leading provider of privacy services supporting regulatory and self-regulatory compliance programs for a wide range of agencies including APEC, DOC, DAA, EDAA, and FTC. Our privacy experts assist clients with all of their privacy compliance needs.
TRUSTe Technology Platform
Our Data Privacy Management Services leverage the TRUSTe Platform, a comprehensive, SaaS-based technology solution that provides state of the art assessment management, compliance control, and website scanning / monitoring capabilities.