Data processing systems for measuring privacy maturity within an organization
First Claim
1. A computer-implemented data processing method for measuring compliance of a particular organization with one or more requirements associated with one or more pieces of computer code originating from the particular organization, the method comprising:
- electronically obtaining, by one or more processors, each of the one or more pieces of computer code;
automatically electronically analyzing each of the one or more pieces of computer code to determine one or more privacy-related attributes of each of the one or more pieces of computer code, each of the privacy-related attributes indicating one or more types of privacy campaign data that the computer code collects or accesses;
in response to determining that the computer code has a particular one of the one or more privacy-related attributes, executing the steps of (i) electronically displaying one or more prompts to a first individual requesting that the first individual input information regarding the particular privacy-related attribute;
(ii) receiving input information from the first individual regarding the particular privacy-related attribute; and
(iii) communicating the information regarding the particular privacy-related attribute to one or more second individuals for use in conducting a privacy assessment of the computer code;
scanning publicly available data sources for data records associated with the particular organization, the data records comprising one or more public record databases comprising one or more social network websites and one or more additional data records selected from the group consisting of;
one or more privacy disclaimers corresponding with the one or more pieces of computer code; and
one or more privacy notices corresponding to one or more websites corresponding to the particular organization;
determining, by one or more processors, based at least in part on the one or more types of privacy campaign data that the computer code collects or accesses and the publicly available data sources, a privacy maturity score for the particular organization indicating compliance of the organization with one or more privacy-related requirements of the one or more pieces of computer code; and
displaying, by one or more processors, the privacy maturity score on a display screen associated with a computing device; and
marking at least one of the one or more pieces of computer code for modification based at least in part on the privacy maturity score.
2 Assignments
0 Petitions
Accused Products
Abstract
A privacy compliance measurement system, according to particular embodiments, is configured to determine compliance with one or more privacy compliance requirements by an organization or sub-group of the organization. In various embodiments, the system is configured to determine a privacy maturity rating for each of a plurality of sub-groups within an organization. In some embodiments, the privacy maturity rating is based at least in part on: (1) a frequency of risks or issues identified with Privacy Impact Assessments (PIAs) performed or completed by the one or sub-groups; (2) a relative training level of members of the sub-groups with regard to privacy related matters; (3) a breadth and amount of personal data collected by the sub-groups; and/or (4) etc. In various embodiments, the system is configured to automatically modify one or more privacy campaigns based on the determined privacy maturity ratings.
649 Citations
19 Claims
-
1. A computer-implemented data processing method for measuring compliance of a particular organization with one or more requirements associated with one or more pieces of computer code originating from the particular organization, the method comprising:
-
electronically obtaining, by one or more processors, each of the one or more pieces of computer code; automatically electronically analyzing each of the one or more pieces of computer code to determine one or more privacy-related attributes of each of the one or more pieces of computer code, each of the privacy-related attributes indicating one or more types of privacy campaign data that the computer code collects or accesses; in response to determining that the computer code has a particular one of the one or more privacy-related attributes, executing the steps of (i) electronically displaying one or more prompts to a first individual requesting that the first individual input information regarding the particular privacy-related attribute;
(ii) receiving input information from the first individual regarding the particular privacy-related attribute; and
(iii) communicating the information regarding the particular privacy-related attribute to one or more second individuals for use in conducting a privacy assessment of the computer code;scanning publicly available data sources for data records associated with the particular organization, the data records comprising one or more public record databases comprising one or more social network websites and one or more additional data records selected from the group consisting of;
one or more privacy disclaimers corresponding with the one or more pieces of computer code; and
one or more privacy notices corresponding to one or more websites corresponding to the particular organization;determining, by one or more processors, based at least in part on the one or more types of privacy campaign data that the computer code collects or accesses and the publicly available data sources, a privacy maturity score for the particular organization indicating compliance of the organization with one or more privacy-related requirements of the one or more pieces of computer code; and displaying, by one or more processors, the privacy maturity score on a display screen associated with a computing device; and marking at least one of the one or more pieces of computer code for modification based at least in part on the privacy maturity score. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A non-transitory computer-readable medium storing computer-executable instructions for measuring compliance of a plurality of individuals with one or more privacy-related requirements, the method comprising:
-
electronically obtaining, by one or more processors, one or more pieces of computer code from one or more websites associated with the plurality of individuals; automatically electronically analyzing each of the one or more pieces of computer code to determine one or more privacy-related attributes of each of the one or more pieces of computer code, each of the privacy-related attributes indicating one or more types of privacy campaign data that the computer code collects or accesses; in response to determining that the computer code has a particular one of the one or more privacy-related attributes, executing the steps of (i) electronically displaying one or more prompts to a first individual requesting that the first individual input information regarding the particular privacy-related attribute;
(ii) receiving input information from the first individual regarding the particular privacy-related attribute; and
(iii) communicating the information regarding the particular privacy-related attribute to one or more second individuals for use in conducting a privacy assessment of the computer code;analyzing, by one or more processors, for at least one of the plurality of individuals, pieces of publicly available data associated with the at least one of the plurality of individuals, the pieces of publicly available data comprising one or more public record databases comprising one or more social network websites and one or more additional pieces of publicly available data selected from the group consisting of;
one or more privacy disclaimers corresponding to the one or more pieces of computer code; and
one or more privacy notices corresponding to the one or more websites associated with the plurality of individuals;determining, by one or more processors, based at least in part on the one or more types of privacy campaign data that the computer code collects or accesses and the pieces of publicly available data, a privacy maturity score for the plurality of individuals indicating compliance of the plurality of individuals with one or more privacy-related requirements; displaying, by one or more processors, the privacy maturity score on a display screen associated with a computing device; and marking at least one of the one or more pieces of computer code for modification based at least in part on the privacy maturity score. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19)
-
Specification