Evaluating a Vendor's Privacy Practices: The Rise of the Vendor Privacy Assessment Questionnaire

Greenberg Traurig Shareholder David A. Zetoony, Co-Chair of the U.S. Data, Privacy & Cybersecurity Practice, and Associate Karen E. Ross presented the webinar "Evaluating a Vendor's Privacy Practices: The Rise of the Vendor Privacy Assessment Questionnaire" on January 13, 2021. Many companies have institutionalized the practice of conducting due diligence on their vendors’ security practices. A familiar component of the diligence process is to have a vendor complete a security assessment questionnaire or SAQ. Historically, vendor privacy due diligence has been a less common phenomena. New cases, statutes, rules, and regulations are changing that. This program discussed the growing need and upward trend for conducting privacy due diligence in light of the European court of justice decision in Schrems II, the CCPA, and the CPRA. It also provided in-house counsel with practical insights into what to include in a privacy assessment questionnaire, and how to institutionalize the practice of conducting them.