OneTrust

OneTrust Privacy. Privacy Management Software. Operationalize Your ​Privacy Program for ​CCPA, GDPR & ​All the World's Privacy Laws​.

  • $300 – $6,500 per vulnerability
  • Safe harbor
Submit report

New Version Released!

Summary

Happy Wednesday, Researchers! OneTrust has released its latest version (202303.2.0), which has provided new features to our solution for you to review and test. We have provided a list of new features that have been added along with the respective modules.

New Features

Data Discovery

  • Data Quality Completeness

    Review data quality insight metrics for published results after a successful RDBMS scan. This allows users to observe the completeness of their dataset represented on an aggregated scale from 0 to 10 and to improve their database design as necessary.

Data Mapping Automation

  • Global Search for Data Mapping Automation

    Leverage the new Global Search functionality to search for specific inventories within the Data Mapping Automation module. This enhancement simplifies the user experience by providing a direct method to quickly find and navigate to specific records at any time with reduced keystrokes and load time.

Data Redaction

  • Share Unreviewed Files

    Share auto-redacted documents that have not been manually reviewed in the tool. This option allows a user to share attachments as-is with the configured redaction preferences applied by the application to automate select redaction use cases.

  • Redaction Workspaces

    View all files marked for redaction with the Open Redaction Workspaces button in a Results Summary. This management option allows users to access all prepared files in one Collection to easily filter, search, and manage in bulk in the OneTrust Redaction Tool.

ESG Program Reporting & Disclosures

  • Complete Corporate Sustainability Reporting Directive (CSRD) Framework

    Leverage the new Corporate Sustainability Reporting Directive (CSRD) framework when configuring metrics and metric groups. This enhancement, in addition to the existing environmental disclosures, enables you to gather and report data specifically for improved CSRD compliance. CSRD is an official ruling in which the European Union requires large companies and listed companies to publish regular reports on the social and environmental risks they face and on how their activities impact people and the environment.

Incident Management

  • Multiple Users on Workflow Rules

    Select multiple user type attributes when triggering rules on incident workflows. This enhancement allows users to assign more than one user type attribute for the Launch Assessment and Send Notification workflow rule actions.

  • Notification Email Variables

    Configure system attributes as dynamic variables on incident emails when triggering rules on incident workflows. This enhancement allows users to add dynamic variables to the email in the Send Notification workflow rule action.

  • Global Search for Incident Management

    Leverage the new Global Search functionality to search for specific incidents within the Incident Management module. This enhancement simplifies the user experience by providing a direct method to quickly find and navigate to specific records at any time with reduced keystrokes and load time.

IT & Security Risk Management

  • Evidence Task Library

    Create master evidence tasks using the new Evidence Task Library. This feature allows users to create an evidence task to continuously collect evidence and document control implementation without having to navigate to the Control Details screen.

  • Global Search for IT & Security Risk Management

    Leverage the new Global Search functionality to search for specific risks within the IT & Security Risk Management module. This enhancement simplifies the user experience by providing a direct method to quickly find and navigate to specific records at any time with reduced keystrokes and load time.

PIA & DPIA Automation

  • Global Search for PIA & DPIA Automation

    Leverage the new Global Search functionality to search for specific assessments within the PIA & DPIA Automation module. This enhancement simplifies the user experience by providing a direct method to quickly find and navigate to specific records at any time with reduced keystrokes and load time.

Policy Management

  • Global Search for Policy

    Leverage the new Global Search functionality to search for specific policies, procedures, and standards within the Policy Management module. This enhancement simplifies the user experience by providing a direct method to quickly find and navigate to specific records at any time with reduced keystrokes and load time.

Privacy Rights Automation

  • Export Request Details as PDF

    Export request details in PDF format using the Export option on the Context menu of the Request Details screen. The PDF export includes basic details of the request in addition to verification methods, subtask information, request activity, history, and results summary.

  • Global Search for Privacy Rights Automation

    Leverage the new Global Search functionality to search for specific requests within the Privacy Rights Automation module. This enhancement simplifies the user experience by providing a direct method to quickly find and navigate to specific records at any time with reduced keystrokes and load time.

QRA & Vendor Portal

  • Global Search for QRA & Vendor Portal

    Leverage the new Global Search functionality to search for specific requests, answer libraries, and customers within the QRA & Vendor Portal module. This enhancement simplifies the user experience by providing a direct method to quickly find and navigate to specific records at any time with reduced keystrokes and load time.

Settings & Administration

  • Global Search

    Leverage the new Global Search functionality to search for specific records within modules across the application. The Global Search functionality is available for objects in the following modules:

    • Data Mapping Automation
    • Policy Management
    • Incident Management
    • IT & Security Risk Management
    • PIA & DPIA Automation
    • Privacy Rights Automation
    • QRA & Vendor Portal
    • Third-Party Exchange
    • Third-Party Risk Management

Third-Party Due Diligence

  • Content Type Column Enhancements

    View multiple content types in the Parent Content Type and Content Type columns on the Adverse Media tab of the Screening Results Details screen. With this enhancement, users can view two or more content types for each adverse media article to quickly identify risks relevant to their organization.

Third-Party Risk Exchange

  • Important Changes to the Exchange and Vendor Portal

    The OneTrust application is moving to a data-driven approach for the Third-Party Risk Exchange. With this enhancement, assessments and the risk domain output from the Exchange will be removed for customers who have not paid for assessment services and net new customers will be unable to sign-up for the free QRA & Vendor Portal tool.

  • Global Search for Third-Party Risk Exchange

    Leverage the new Global Search functionality to search for specific Exchange vendors within the Third-Party Risk Management module. This enhancement simplifies the user experience by providing a direct method to quickly find and navigate to specific records at any time with reduced keystrokes and load time.

Third-Party Risk Management

  • Global Search for Third-Party Risk Management

    Leverage the new Global Search functionality to search for specific Exchange vendors within the Third-Party Risk Management module. This enhancement simplifies the user experience by providing a direct method to quickly find and navigate to specific records at any time with reduced keystrokes and load time.

OneTrust
OneTrust