Osano Features

Functionality (46)

Data Subject Access Requests: Data Subject Access Request (DSAR) functionality helps companies comply with user access and deletion requests.
Identity Verification: Identity verification functionality validates a person's identity prior to a company complying with a data subject access request.
Privacy Impact Assessments: Privacy Impact Assessment (PIA) features help companies evalute, assess, track and report on the privacy implications of their data.
Data Mapping - survey-based: Data mapping functionality, which helps companies understand how data flows throughout their organization, is achieved through manual surveys sent to company employees.
Data Mapping - automated: Data mapping functionality, which helps companies understand how data flows throughout their organization, is achieved through automated machine learning.
Data Discovery: Data discovery features collect and aggregate data from a variety of sources and prepares it in formats that both people and software can easily use it to then run analytics.
Data Classification: Data classification features tag the discovered data to make it easy to search, find, retrieve, and track.
De-identification/pseudonymization: De-identification or pseudonymization features replace personally identifiable information with artificial identifiers, or pseudonyms to comply with privacy regulations.
Breach notification: Data Breach Notification features help companies automate their breach response to stakeholders.
Consent management: Consent management features help companies obtain and manage user consent when collecting, sharing, buying, or selling a user's data.
Website tracking scanning: Website tracking scanning features help companies understand what cookies, beacons, and other trackers are on their websites.
Data access governance: Data Access Governance functionality helps limit the number of people who have access to data unless they are permissioned to do so.
Identity Verification: Identity verification functionality validates a person's identity prior to a company complying with a data subject access request.
Workflow: Offers workflows to process Data Subject Access Requests to enable multiple departments to assist when complying with user access and deletion requests.
DSAR Portal: Offers a user-facing portal for data subjects to request access to their data.
Reporting and logs: Has reporting and log functionality to prove that companies are in compliance with mandated response time, per privacy laws such as GDPR, CCPA, and others.
Centralized platform: Has a centralized view of PIA software functions, such as tracking, templates, and reporting
Tracking: Offers tracking functionality to manage privacy impact assessments during its lifecycle
Templates: Offers assessment templates which can be customized to meet business needs
Workflow: Offers workflows to enable multiple departments to collaborate on privacy impact assessments.
Reporting and analytics: Has reporting and analytics functionality to highlight risks and compare analyses.
Dashboard: Offers a dashboard to capture, store, and manage granular user consents
Reporting: Provide reporting functions showing granular data to demonstrate compliance to regulators
Integrations: Integrates with marketing software and other analytical tools
End-user management: Allows end-users to manage their preferences online
Audit trails: Shows audit trails of how user consent preferences have changed
APIs: Offers APIs to link to your data
Mobile SDK: Offers a mobile SDK to use consent management tools on mobile apps
Customizable design: Offers customizeable designs to match corporate branding
Server-side storage: Offers server-side storage of consent, not client-side, for compliance reporting purposes
Auto scans: Automatically scan websites to identify web trackers, such as cookies
Auto privacy policy update: Automatically updates privacy policies based on scans
Cookie notice report: Generates a Cookie Notice report
Easy installation: Easy to install on existing websites with simple code
Reporting: Regularly sends scan reports to stakeholders
Structure type: Searches structured, semi-structured, and unstructured data for sensitive data.
Contextual search: Offers contextual search functions to understand factors such as file type, sensitivity, user type, location, and other metadata.
Template algorithms: Has template rules and pattern matching algorithms (PII, PCI, PHI and more)
Multiple file and location types: Search multiple file types (images, PDFs, etc.) and repository locations (such as on-premise databases, cloud storage, email servers, websites, etc.)
Real-time monitoring: Monitors data stores in real-time searching for newly created sensitive data.
Dashboard: Offers a dashboard showing specific location of sensitive data.
Compliance: Facilitates compliance and enables adherence to common industry regulatory standards such as GDPR, CCPA, HIPAA, PCI DSS, ISO, and others.
Reporting: Offers reporting functionality.
Centralized Vendor Catalog: Allows companies to assess vendors profiles in a centralized catalog
Questionnaire Templates: Offers standardized security and privacy framework questionnaire templates
User Access Control: Offers role based access controls to allow only permissioned users to utilize various parts of the software.

Risk assessment (4)

Risk Scoring: Offers built-in or automated vendor risk scoring
4th Party Assessments: Offers tools to assess fourth parties -- your vendor's vendors
Monitoring And Alerts: Monitors changes in risk and sends notifications, alerts, and reminders for specific actions including: upcoming assessments, profile access requests, etc
AI Monitoring: Uses AI to alert administrators to changes in risk scoring through continuous monitoring.