CASE STUDIES PRIVACY SERVICES
        
  PRIVACY ASSESSMENT 
Taking a snapshot of your current privacy status. We classify and inventory your personal data and highlight your top areas of privacy risk. Joining the Safe Harbor? We'll perform your due diligence.
more >>
      
  POLICY AND PROCESS DESIGN    

Providing you the documents you'll need for global compliance
including: privacy and security
policies, vendor assurance, incident response, subject data access, opt-out integration, and more. 
more >>
      
  EMPLOYEE AWARENESS   
Creating and delivering the content for multimedia, global awareness campaigns on privacy and security. We measure before-and-after employee comprehension to help
you demonstrate value.
 more >>
    
Here are examples of just some of the projects completed by Minnesota Privacy Consultants:

PRIVACY ASSESSMENT

·      Privacy audit: Conducted the first privacy audit of a large, multilateral government organization on behalf of the internal audit function.  Elapsed time: 6 weeks.  Cost: $$

·      EU direct-marketing compliance strategy: Created an in-depth strategy paper for a financial company’s push into Europe on behalf of the marketing department.  Elapsed time: 3 weeks.  Cost: $$

·      Privacy assessment: Conducted the first privacy assessment of a global e-commerce company on behalf of a business unit.  Elapsed time: 10 weeks.  Cost: $$$

·      Privacy assessment: Created an internal privacy-assessment questionnaire for a large technology company on behalf of the legal department.  Elapsed time: 3 weeks.  Cost: $

·      Safe Harbor due diligence: Conducted the first Safe Harbor assessment and data mapping of a global software provider on behalf of the legal department.  Elapsed time: 12 weeks.  Cost: $$

·      Safe Harbor due diligence: Conducted the first Safe Harbor assessment and data mapping of a global manufacturer on behalf of the legal department.  Elapsed time: 8 weeks.  Cost: $$

·      Safe Harbor due diligence: Completed the first Safe Harbor assessment and data inventorying for a small energy company on behalf of the legal department.  Elapsed time: 8 weeks.  Cost: $$

·      Data inventory and mapping: Conducted the first data inventory and mapping for a healthcare company on behalf of a business unit.  Elapsed time: 10 weeks.  Cost: $$

·      Data inventory and mapping: Performed the first data inventory and mapping and e-discovery preparation for a retailer on behalf of the technology department.  Elapsed time: 8 weeks.  Cost: $$

·      Data de-identification: Conducted a statistical de-identification analysis for a healthcare company on behalf of a business unit.  Elapsed time: 4 weeks.  Cost: $$

·      Data destruction: Following the finding of a consumer-privacy ombudsman, observed the destruction of a consumer database for a technology company.  Elapsed time: 1 week.  Cost: $

·      HIPAA compliance assessment: Upgraded a covered entity’s policy and training compliance.  Elapsed time: 4 weeks.  Cost: $$

·      HIPAA, ARRA, and MN State compliance assessment: Updated a nonprofit’s privacy program on behalf of the executive team.  Elapsed time: 12 weeks.  Cost: $$

·      Personal health-record assessment: Assessed the status of the market in personal health-record privacy certification.  Elapsed time: 4 weeks.  Cost: $

·      And more.
 

POLICY AND PROCESS DESIGN

·      Information-security governance framework: Helped launch a consumer-service company’s information security steering committee and policy framework.  Elapsed time: 8 weeks.  Cost: $$

·      Data-protection policy framework: Consolidated a consumer-service company’s privacy and security policies and client requirements into a consolidated framework deployed on SharePoint.  Elapsed time: 12 weeks.  Cost: $$

·      Privacy policies: Created the privacy and data-classification policies for a variety of organizations.  Cost: variable

·      Data-incident process: Upgraded the information-incident response process for an insurance company on behalf of the compliance department.  Elapsed time: 6 weeks.  Cost: $$

·      Data-incident process: Upgraded the information-incident response process and held tabletop sessions for an agribusiness company on behalf of the technology department.  Elapsed time: 8 weeks.  Cost: $$

·      Marketing privacy processes: Designed a set of over 20 policies and processes for a financial company on behalf of the privacy department.  Elapsed time: 12 weeks.  Cost: $$

·      And more. 
 

EMPLOYEE AWARENESS 

·      Health privacy seminar: Provided a day-long overview of US and EU health-privacy requirements for a medical-devices company on behalf of the product-development department.  Elapsed time: 1 week.  Cost: $

·      Privacy awareness materials: Designed a multimedia campaign for a large energy company on behalf of the technology department.  Cost: $$

·      Privacy awareness materials: Designed a year-long, multimedia campaign for a consumer-services company on behalf of the technology department.  Elapsed time: 9 months.  Cost: $$

·      Privacy awareness materials: Designed a multimedia campaign for a consumer-services company on behalf of the technology department.  Elapsed time: 8 weeks.  Cost: $$

·      Privacy awareness materials: Designed an advanced privacy course and extensive brochure for a large technology company on behalf of the privacy department.  Elapsed time: 3 months.  Cost: $$

·      And more. 
 

OTHER

·      Discrete data-breach response management for a number of firms, typically on behalf of the legal department.
 
 

Key: 

·     $$$ = multiple-month, multiple-person project

·     $$ = multiple-month, single-person project

·     $ = single-month, single-person project

 
 
  Privacy Practitioner Resources Privacy Laws Privacy Conferences Privacy Books
Privacy Organizations Privacy Breaches Privacy News
 		   Contact Us     Privacy 
Minnesota Privacy Consultants
HOME     ABOUT US     CONTACT  13570 Grove Drive, MS 371  ●  Maple Grove, MN 55311  ●  Phone: (763) 657 0350   Fax: (763) 445 2094