All Projects → privacyradius → Gdpr Tracker

privacyradius / Gdpr Tracker

Licence: mit
A crowdsourced directory tracking the compliance and security practices of cloud services and their subprocessors

Programming Languages

javascript
184084 projects - #8 most used programming language

Projects that are alternatives of or similar to Gdpr Tracker

Gdpr Checklist
The GDPR Checklist
Stars: ✭ 655 (+361.27%)
Mutual labels:  gdpr, privacy, compliance
Windows Secure Host Baseline
Configuration guidance for implementing the Windows 10 and Windows Server 2016 DoD Secure Host Baseline settings. #nsacyber
Stars: ✭ 1,288 (+807.04%)
Mutual labels:  audit, compliance, certificates
Datadefender
Sensitive Data Management: Data Discovery and Anonymization toolkit
Stars: ✭ 79 (-44.37%)
Mutual labels:  gdpr, privacy, compliance
fidesops
Privacy as Code for DSAR Orchestration: Privacy Request automation to fulfill GDPR, CCPA, and LGPD data subject requests.
Stars: ✭ 32 (-77.46%)
Mutual labels:  privacy, compliance, gdpr
Data Processing Agreements
Collection of Data Processing Agreement (DPA) and GDPR compliance resources
Stars: ✭ 110 (-22.54%)
Mutual labels:  gdpr, privacy, compliance
Opendsr
A common framework enabling companies to work together to protect consumers' privacy and data rights.
Stars: ✭ 295 (+107.75%)
Mutual labels:  gdpr, privacy, compliance
Awesome Iam
👤 Identity and Access Management Knowledge for Cloud Platforms
Stars: ✭ 186 (+30.99%)
Mutual labels:  cloud, gdpr, privacy
Prowler
Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.
Stars: ✭ 4,561 (+3111.97%)
Mutual labels:  cloud, gdpr, compliance
Databunker
Secure storage for personal records built to comply with GDPR
Stars: ✭ 122 (-14.08%)
Mutual labels:  gdpr, privacy, compliance
Inspec Gcp Cis Benchmark
GCP CIS 1.1.0 Benchmark InSpec Profile
Stars: ✭ 69 (-51.41%)
Mutual labels:  cloud, compliance
Megasync
Easy automated syncing between your computers and your MEGA Cloud Drive
Stars: ✭ 975 (+586.62%)
Mutual labels:  cloud, privacy
Securityprivacyreferencearchitecture
Open Repository for the Open Security and Privacy Reference Architecture
Stars: ✭ 73 (-48.59%)
Mutual labels:  gdpr, privacy
Lynis
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
Stars: ✭ 9,137 (+6334.51%)
Mutual labels:  gdpr, compliance
Pci Paas Webapp Ase Sqldb Appgateway Keyvault Oms
Azure PCI PaaS Reference Architecture
Stars: ✭ 36 (-74.65%)
Mutual labels:  cloud, compliance
Data Protection Mapping Project
Open Source Data Protection/Privacy Regulatory Mapping Project
Stars: ✭ 96 (-32.39%)
Mutual labels:  gdpr, privacy
Awesome Gcp Certifications
Google Cloud Platform Certification resources.
Stars: ✭ 1,328 (+835.21%)
Mutual labels:  cloud, certification
Bloom
The simplest way to de-Google your life and business: Inbox, Calendar, Files, Contacts & much more
Stars: ✭ 934 (+557.75%)
Mutual labels:  cloud, privacy
Presidio
Context aware, pluggable and customizable data protection and anonymization SDK for text and images
Stars: ✭ 1,320 (+829.58%)
Mutual labels:  gdpr, privacy
Parsec Cloud
Open source Dropbox-like file sharing with full client encryption !
Stars: ✭ 99 (-30.28%)
Mutual labels:  cloud, privacy
Amazon S3 Find And Forget
Amazon S3 Find and Forget is a solution to handle data erasure requests from data lakes stored on Amazon S3, for example, pursuant to the European General Data Protection Regulation (GDPR)
Stars: ✭ 115 (-19.01%)
Mutual labels:  gdpr, privacy

ComplianceRank (formerly GDPR Tracker)

ComplianceRank is a crowdsourced directory that makes it easier for companies and consumers to keep track of the data handling practices of their subcontractors and cloud services in real-time.

This repository holds all the services displayed in the directory. We strongly believe that data handling practices should be easily available to business & customers.

How to add a service?

You can add a service by following the contribution guidelines.

Format

We use JSON Schema to validate the data and to maintain a high level of data quality. Please find the schema at the following location.

Field Type Format Required Options Description
id string * Unique id to identify the company
name string * Name of the company
description string * Description of the service
website string url * Website of the service
applicationUrl string url * Application of the service
categories array * Categories that the service belongs to
iconUrl string url * URL to the icon of the service (recommended size 400x400px). Must be HTTPS
countryHQ string ISO ALPHA-2 code * Country of HQ
gdprReadyStatus enum * unknown
inProgress
ready
nonCompliant
GDPR readiness status of this service
privacyUrl string url Link to privacy policy
dsarUrl string url Data Subject Access Rights Form URL
dpaUrl string url Data Processing Agreement URL
subprocessorsUrl string url Subprocessors overview URL
dataCenters array Locations where data is hosted
hostingProviders array Hosting providers
contacts array Appointed DPOs or privacy officers per region, we only support 3 types DPO, Privacy Officer, Other
certifications enum - ISO 27001
- ISO 27002
- ISO 27017
- ISO 27018
- C5
- PCI DSS Level 1
- PCI DSS Level 3.1
- PCI DSS Level 3.2
- PCI DSS Level 4.0
- SOC 1
- SOC 2 Type I
- SOC 2 Type II
- SOC 3
- HIPAA
- HITECH
- RESO
- ISAE 3000
- EU-U.S. Privacy Shield
- Swiss-U.S. Privacy Shield
- CSA
- OpenID
- TRUSTe Enterprise Privacy Certification
- SOX
Certifications
dataBreaches array Reported data breaches
articles array GDPR & privacy related articles
bugBountyProgramUrl string url Link to bug bounty program
statusUrl string url Link to status page
statusTwitter string Twitter account that communicates about service status & uptime
businessModel array - B2B
- B2C
- B2B2C
Business model
verified boolean Verified by company representative

Example

{
  "id": "acme",
  "name": "Acme",
  "description": "CRM & Customer platform for SMBs",
  "categories": [
    "CRM", 
    "Customer Support"
  ],
  "iconUrl": "https://pbs.twimg.com/profile_images/922908923207839744/5EZID3tH_400x400.jpg",
  "website": "https://www.acmesaas.com",
  "applicationUrl": "https://app.acmesaas.com",    
  "twitter": "acme",
  "countryHQ": "US",
  "gdprReadyStatus": "inProgress",
  "privacyUrl": "https://www.acmesaas.com/privacy",
  "dsarUrl": "https://bs.gdprform.io",
  "dpaUrl": "https://www.acmesaas.com/dpa",
  "subprocessorsUrl": "https://www.acmesaas.com/subprocessors",
  "dataCenters": [
    "EU"
  ],
  "hostingProviders": [
    "AWS", 
    "Digital Ocean"
  ],
  "contacts": [
    {
      "type": "DPO",
      "name": "John Doe",
      "email": "[email protected]",
      "region": "EU"
    }, 
    {
      "type": "DPO",
      "name": "Tim Doe",
      "email": "[email protected]",
      "region": "US"
    }
  ],
  "certifications": [
    "ISO 27001", 
    "HIPAA"
  ],
  "dataBreaches": [
    {
      "date": "10/12/2017",
      "url": "https://www.beatswtich.com/breach"
    }
  ],
  "articles": [
    {
      "date": "02/12/2018",
      "url": "https://www.beatswtich.com/gdpr"
    }
  ],
  "bugBountyProgramUrl": "https://www.beatswtich.com/bounty-program",
  "statusUrl": "https://www.beatswtich.com/status",
  "statusTwitter": "beatswitchstatus",
  "securityUrl": "https://www.beatswtich.com/security",
  "businessModel": ["B2C"]
  "verified": true
}

Removal

If you want your service to be removed from the tracker, send in a pull request with the reason stated.

License

MIT License. Please see the license file for more information.

About

Made in Belgium 🇧🇪 Europe 🇪🇺

The GDPR Tracker is created by Privacy Radius. Privacy Radius is a European provider of AI-powered data and privacy solutions to help companies create trusted environments to protect consumers' privacy and data rights.

Disclaimer

We do our best to ensure that the data we provide is complete, accurate and useful. However, because we do not verify all the data, and because the processing required to make the data useful is complex, we cannot be liable for omissions or inaccuracies.

Links

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].