Red Clover Case Study: Many hands make light work.

Partnering for privacy progress

Consumer privacy rights are going to be one of the biggest issues driving business innovation in the next few years, and California is leading the country in passing consumer-centric privacy legislation (see California Consumer Privacy Act and the California Privacy Rights Act).

The good news—consumers are continually getting more control over how their data is used online.

The bad news—the rules are constantly changing.

Anytime a new business dimension opens up, it’s common to see the rapid development of norms we are currently seeing in the data privacy landscape. Experimentation is necessary to find best practices that will establish the future. But for businesses caught in the middle of the experiment, compliance can be overwhelming.

With over 5,700 employees managing sensitive employment information like SSNs, birthdates, and addresses for a 94,000+ strong workforce every week, employment/recruitment agency Randstad North America, Inc. already understood the importance of a strong privacy program.

But Chief Privacy Officer Michael Jones knew that getting expert help with their data mapping would keep their CCPA-compliance project on track and ensure this critical piece of their privacy program was done right.

Flattening the compliance curve

Randstad was already using OneTrust compliance solutions, so bringing in Red Clover Advisors’ resident OneTrust expert, CEO Jodi Daniels, was a no-brainer.

Jodi’s expertise in privacy meant she knew exactly what we were looking for and was able to start immediately,” Jones says. “RCA hit the ground running with effectively no ramp-up period.

We were able to work directly in Randstad’s existing system to set up questionnaires and data mapping workflows they are still using almost two years later. The processes we established gave Randstad’s privacy team even more insight into how their data collection program was working and where they needed to do some tweaking.

Now their well-mapped data inventory is both CCPA-compliant and incredibly responsive to individual rights requests. Even better, Randstad is well-positioned to adapt their programs to CPRA (and any other privacy regulations that pop-up).

It was great to come in and work with a team to fine-tune their program. Randstad clearly knows privacy rights are a necessary part of establishing consumer trust, and consumer trust is essential to their business,” Daniels says. “They are a good example of a company going beyond compliance and making privacy a key part of their identity.

The goal of training is performance

You’ve heard us preach this before, but your privacy program is only as good as your employees’ understanding of it. We believe in consistent privacy training so much that it’s our favorite thing to do with our clients.

You know the old saying goes: “Set up privacy practices for a client and they’ll be compliant for a day. Train a client how to embrace privacy and they’ll be compliant for a lifetime.”

Or something like that, right?

Long-term privacy management and compliance was our goal with Randstad. We trained their teams not just to understand the systems that we put in place, but so they could also take the reins when we stopped. Thanks to their internal buy-in, the transition was seamless.

We brought them on for data mapping, but they went above and beyond by helping our internal teams really understand how to use the data mapping tools,”  Jones says. “I absolutely would recommend Red Clover Advisors. They got internal stakeholders on board and produced exactly what we were looking for.

Let us help.

Companies that take compliance seriously enough to go beyond it are the companies that will lead the next generation of business innovation.

Call us today to get started.