Privacy Capability Assessment
Delivering privacy assurance and improved business
efficiencies at cost-effective prices
Introduction
In today's interconnected digital landscape, safeguarding your business against cyber and privacy risks is not just an option – it's a necessity. At Albrecht Burrows, we understand the critical importance of proactive risk management in the face of evolving cyber threats. Our expertise in cyber and privacy risk management empowers businesses to assess, address, and mitigate potential vulnerabilities effectively and cost-efficiently.
With cyber attacks on the rise and privacy regulations becoming increasingly stringent, businesses can no longer afford to overlook the importance of comprehensive risk management strategies. Our tailored solutions provide you with the peace of mind that comes from knowing your organization is equipped to navigate the complexities of the digital world securely. Partner with us to secure your business today and build a resilient foundation for tomorrow.
What is a Privacy Capability Assessment?
The Privacy Capability Assessment (PCA) is a comprehensive solution that benchmarks your privacy practices against established best practices and regulatory obligations providing actionable, pragmatic recommendations to enable your organisation to improve your privacy controls and processes and address the continually evolving privacy regulations.
Our comprehensive approach includes holistically assessing the current state of your privacy management program and privacy risks, developing forward-looking recommendations to meet the ever increasing privacy expectations of consumers and regulators. We have developed an approach that aligns with internationally recognised privacy frameworks including the National Institute of Standards and Technology (NIST) Privacy Framework, the ISO 27701 extension to ISO27001, and the UK Information Commissioner Office's (ICO) Privacy Accountability Framework.
A PCA covers all aspects of your privacy management program, including compliance with legislative requirements, policies and procedures, governance arrangements, data retention, lawful processing of personally identifiable information, resourcing, training and culture, and outsourcing and data sharing arrangements, including the use of Cloud services.
Why now?
Good information handling practices makes good business sense. Organisations that maintain mature practices for handling personal information enhance their brand's reputation, increase consumer and employee confidence and trust, and ensure accuracy and security of beneficial data while minimising risks of harms to individuals and potential regulatory actions.
A Privacy Capability Assessment (PCA) helps you identify opportunities to uplift the maturity of your organisation’s privacy management program and meet the increasingly high public expectations and complex regulatory obligations.
The PCA enhances an organisation's overall data protection strategy and enables organisations to adapt to the ever-changing regulatory environment. The Australian Government has proposed 116 amendments to Australia's privacy laws, expected to be introduced to Parliament in 2024, that will impact heavily on every organisation. Our PCA will help to ensure your organisation is prepared for the pending changes and not scrambling to comply with complex new laws at the last minute. Early preparation can also be financially beneficial by spreading your investment in maturity uplift activities over a longer timeframe.
Organisations with mature and robust privacy programs can build trust with customers and drive long-term reputational and financial advantages.
The challenge for many organisations is knowing whether their existing privacy program is fit for purpose and understanding what changes they need to make to reach their target level of maturity.
How does it work?
The Privacy Capability Assessment benchmarks your organisation's privacy controls and practices against established, internationally recognised Privacy Frameworks . The engagement workflow will follow a defined five step process outlined below:
What are the benefits to your business?
Transparent and Flexible Pricing
Get a no obligation consultation
At Albrecht Burrows, we understand the complexity and urgency of cyber and privacy risks facing businesses today. Get a no obligation consultation with our experts to better understand how your business can increase your resilience to cyber and privacy threats and regulatory risks. Our team of experienced multidisciplinary professionals will work closely with you to create personalised risk management solutions tailored to your business' unique needs needs and budget. Don't wait until it's too late – schedule your no-obligation consultation today and take proactive steps towards protecting your business from cyber threats and privacy breaches.
Testimonials
What sets AB apart is their flexible and pragmatic approach - they share our values, our DNA, and they think outside the box. The team are highly skilled commercial lawyers who possess unparalleled expertise in regulatory areas, a deep understanding of business, and exceptional negotiation skills."
Regan Carey
Head of Legal and Compliance
Craigs Investment Partners
AB offers exceptional legal advice delivered by highly skilled and brilliant lawyers who are fantastic to deal with; personable, easy to talk to and compassionate. The commerciality of their advice is matched only by their commitment to simplifying the law and finding practical, creative solutions!
Tas Demos
Managing Partner
BDH Leaders
Meet Our Team
James A. Cole
Partner | Head of Cyber & Privacy
James is a lawyer, computer scientist, and criminologist practicing in cyber and technology, data protection and privacy, data breach response, and cyber insurance. With over 25 years of experience in information security and a multidisciplinary background, James combines technical and legal expertise to help clients navigate the complex and evolving cyber and privacy landscape.
James has handled hundreds of cyber and privacy breaches and is passionate about helping businesses build resilience to cyber and privacy risks.
Mark Anderson
Legal Consultant, Lawyer (NZ)
Mark is a highly awarded legal risk adviser and barrister. He is a leading expert in a variety of legal risk areas, including cyber, privacy and technology law.
Mark has provided incident response advice globally to clients in need, including those in Europe, Australia, New Zealand and across APAC, after developing global incident response panels drawing together legal, IT, Forensic and PR professions to manage cyber crises. He has managed some of the highest profile cyber breaches in Australasia.
Case Studies
1. Financial Institution Compliance: Our hybrid computer science – legal team members helped the client successfully map their current cyber maturity level and legal obligations, establish a maturity uplift roadmap in coordination with their IT provider, and worked with their insurance broker to complete accurate proposal form responses resulting in the successfully obtaining cyber insurance coverage for an affordable premium. 2. SaaS Company AI & Facial Recognition Compliance: We helped an Australian SaaS web app maker successfully navigate the complexities of international data protection laws as they apply to biometric information in retail virtual try-on technology minimising their overall privacy and data protection risks and helping the company implement a sound multinational expansion strategy aligned to the client's risk tolerance. 3. Transport Logistics Incident Response: Working with a prominent logistics company, we provided timely and compassionate advice and assistance in responding to a devastating ransomware attack from day 1 through to full recovery and post-recovery risk mitigation successfully returning the client to normal operations in less than one week with no regulatory actions or adverse media.
Data breach emergencies
If you have experienced a data breach, whether unintential employee errors, employee data theft, or you’ve been the victim of a cyber-attack, the first 48 hours is crucial. So don’t waste any time, just get in touch.
Reach out, day or night.
If you don’t reach us straight away, we will get in touch ASAP!
Email us on [email protected]
Breach emergency Line: 02 8318 5980
Assessment Solutions
Policy and Process
Complaints
Breach Prevention and Response
Awareness and Culture
Terms and Conditions
We are required by the Legal Profession Uniform Law (NSW) (Uniform Law) to set out the following terms of our engagement for your acceptance or further negotiation.
In these Terms, references to Albrecht Burrows, "we", "us", "our" refer to Alliance Legal Pty Ltd (ABN ) trading as Albrecht Burrows of Level 12, 111 Elizabeth Street, Sydney NSW 2000.
This document, together with our General Terms of Business, sets out the terms of our offer to provide legal services to you and constitutes our costs agreement and disclosure pursuant to the Uniform Law. The Terms and the Accepted Options in this Proposal form the entire agreement between You and Us during our engagement and any references to the "Proposal" in this document refers to both the Terms and the Accepted Option.
By accepting this Proposal as set out herein and below in the Terms, you agree that this Proposal serves as a binding Costs Agreement and Disclosure under Schedule 1 of the Legal Profession Uniform Law (NSW) between Albrecht Burrows and You for the provision of legal services and may be enforced in the same way as any other contract.
Smart Commercial Lawyers
Delivering emotionally intelligent legal solutions
ablaw.com.au | [email protected]
Reception 02 8014 2511