OneLogin is a reputable security company. It operates by bringing together regulated frameworks that help in building and strengthening the security and privacy of the clients. For several years now, OneLogin has been under the guidelines provided by the General Data Protection Regulation (GDPR). GDPR is common and is being used by many companies globally. The General Data Protection Regulation is a product of the European Organization. In the recent past, the company used the Generally Accepted Privacy Principles (GAPP). GAPP enable OneLogin to provide Data Processing Agreements. It also adopted the ISO 27018.
GDPR is presumed to be the best in the market and is said to be similar to the Sarbanes-Oxley application. GDPR is not ready, and its guidance is currently being provided by Article 29 Working Party. OneLogin is improving in some areas of GDPR that will be ready by next year.
OneLogin is working on the policies and processes. The company has spent enormous resources and time in restricting data flows and developing proper data mapping diagrams. The company is also working on the contract language. Privacy requirements that are unique to contract language are already in the security and privacy networks as well as in the GDPR. Some of the contract languages were not clear and are being worked on include use of subcontractors (Article 28). Responsibility of data processors specific to data controllers (Article 28) and data breach notification language (Article 34) among other contract verbiage. The changes have been updated into the MSA and Data Processing Agreement. One Login is also providing room for negotiating with customers on the right language to use.
In the past, sound plans were used to serve the Data Protection Officer (DPO). GDPR, however, requires an independent legal counsel from the EU to serve as the DPO of OneLogin. The new regulations will make OneLogin obtain new certification after a review in 2018.
OneLogin was established in 2010 to offer security and management solutions to its clients. It currently serves more than 44 countries and 2,000 organizations, both public and private. The company has its headquarters in San Francisco.