OneTrust isthe largest and most widely used technology platform to operationalize privacy,security and third-party risk management.More than 2,500 customers, both big and small and across 100countries, use OneTrust to demonstrate compliance with privacyregulations including the GDPR, California Consumer Privacy Act, Brazil LGPD,and hundreds of the world's privacy laws.
Product | Market Share (%) |
---|---|
OneTrust GRC | 8.0% |
RSA Archer | 15.9% |
AuditBoard | 6.9% |
Other | 69.2% |
Title | Rating | Mindshare | Recommending | |
---|---|---|---|---|
MEGA HOPEX | 3.9 | 1.8% | 86% | 41 interviewsAdd to research |
RSA Archer | 4.0 | 15.9% | 92% | 42 interviewsAdd to research |
Company Size | Count |
---|---|
Small Business | 3 |
Large Enterprise | 9 |
Company Size | Count |
---|---|
Small Business | 108 |
Midsize Enterprise | 73 |
Large Enterprise | 286 |
OneTrust's sizeand scale allows it to offer the easiest-to-use and most affordable solutionfor implementing use cases including: Privacy Maturity Benchmarking, DataProtection by Design and Default (PbD), Data Protection Impact Assessments(PIA/DPIA), Third-Party Vendor Risk Management, Incident and Breach Response,Data Mapping (Records of Processing), Customer Preference Management, ConsentManagement, Website Scanning & Cookie Compliance, Mobile App Scanning, DataSubject/Consumer Rights Management and Policy & Notice Management.
The platform'sintelligence comes from DataGuidance by OneTrust, an in-depth andup-to-date source of privacy and security regulatory summaries, guidance,templates, case law, and analysis. The database is updated daily by over 20in-house privacy researchers, along with a network of 500 lawyers across over300 jurisdictions.
OneTrust's700 employees are located across co-headquarters in Atlanta andin London with additional locationsin Bangalore, Melbourne, San Francisco, New York,Munich and Hong Kong. To learn more, visit OneTrust.com.
OneTrust GRC was previously known as OneTrust Vendor Risk Management.
randstand, into, halfbrick
Author info | Rating | Review Summary |
---|---|---|
Governance Risk and Compliance Coordinator at HUB International | 4.5 | I use OneTrust for incident management and processing privacy requests. Its user-friendly tools centralize information gathering, though customization, especially in the privacy rights module, could improve. It effectively links with different platforms, aiding in managing our resources. |
Senior Compliance Manager at a healthcare company with 201-500 employees | 4.0 | I used OneTrust GRC to automate compliance and manage risks effectively, finding it invaluable for building programs from scratch. While implementation was complex and scalability challenging, it offered substantial ROI compared to our previous use of JupyterOne. |
Information Security Officer at a financial services firm with 11-50 employees | 4.5 | I use OneTrust GRC for vendor management to assess compliance levels. Its simplicity and user-friendly interface are valuable. Improving AI for better automation and integrating machine learning for enhanced vendor security assessment would be beneficial. My experience is limited to OneTrust. |
Director - Security & Compliance at Venzo | 4.5 | I find OneTrust GRC's cloud-based IT and vendor risk management tools beneficial, especially with built-in GDPR and ISO compliance templates. However, it could improve audit management and module consistency. I've previously used other GRC tools like Prisma. |
Cyber Security Consultant at a tech services company with 51-200 employees | 3.5 | I used OneTrust GRC for risk management and GDPR compliance. It automated tasks and covered global regulations, but faced challenges with multinational setups and regulation licensing. Despite these, it outperformed other solutions by integrating privacy, GRC, and data governance. |
Group Head of Risk at a retailer with 1,001-5,000 employees | 2.5 | I used OneTrust GRC for managing IT and control risks, finding it effective for IT risk management but lacking as a comprehensive GRC tool. I've seen no ROI and would prefer alternatives like ServiceNow for broader business risk management. |
Regional Security Officer at a comms service provider with 10,001+ employees | 4.5 | We initially used OneTrust GRC to comply with Brazil’s data protection laws similar to GDPR. The workflow approval process is valuable, but the setup is challenging and requires training. Despite this, we see a faster return on investment. |
Senior Enterprise Risk Manager at a retailer with 10,001+ employees | 3.0 | I use OneTrust GRC to assess project risks, but it lacks customization in workflow automation, making it less aligned with user needs. Enhancing automation capabilities would greatly improve its functionality and user experience. |