Related Posts
I'll be joining tw as UI Lead, soon.
I'm a javascript/react developer since inception of my career & haven't worked much on CICD/JENKINS and similar technology.
Should I be worried that as a lead I don't know these and will it affect by job security?
Ps- I'm good at UI,js, react etc.
Thoughtworks
Experts please help.
More Posts
Need like for completing profile. Thanks.
Do you shoe check others at the office?
Additional Posts in Privacy Law
Can you incorporate SCCs by reference in a DPA?
New to Fishbowl?
unlock all discussions on Fishbowl.




That’s a tough one- consider your needs and the complexity of the organization(s) you work with. All GRC tools have their constraints.
ServiceNow, OneTrust, or similar vendors.
Cannot only be Excel or Google Sheets 😩
I agree on OneTrust as the one to start with - because of its size it’s the one most of your clients that have something in place will have.
Something else to consider - incident response is dominated these days by firms that are on insurance panels and a few well established players on the high end. It’s not the sub-area I would put resources into building first. Compliance, M&A due diligence, and regulatory response are probably better areas to focus on.
Good advice, and that’s basically what I’m trying get to us to aim for. IR and breach response are beyond our capabilities as a firm right now (just 16 attorneys). Compliance and “outside privacy counsel/fractional GC” work is certainly what we’re going to start. The goal is to get to do that kind of IR work in a few years time once getting established with this kind of work first. We’re a defense litigation firm so that’s all the partners here know but this will be our first foray into direct representation of clients on non-litigation files.
Build up a team of lawyers, engineers, and analysts that can communicate vertically and laterally.
We've had OneTrust but are looking at Securiti. They have advanced data discovery tools that will help make mapping and DSRs simpler
I would caution anyone that says they make mapping and DSRs simpler.
BigID!
OneTrust
OneTrust has most market share for privacy operations. ServiceNow big market penetration overall including third-party risk management. Lots of other modules too. Others are coming for their piece of the pie but all have pros/cons.
Privacy program comes first. The tool, just like any other tool is to help but without a program first the tool will do nothing.
I wouldn’t doubt it. Service Now’s primary function didn’t include privacy. OTs did and they do a good job in that space but they struggle in some areas where they have expanded services. All these platforms have nuanced issues.