Designed to enhance regulator-readiness and reduce risk while preserving the value of enterprise data.

Reliance on personal data grows and companies continue to innovate against a backdrop of enhanced privacy regulation, changing consumer privacy expectations, and shareholder demands for profitability. As a result, today’s organizations face a profoundly complicated regulatory, reputational, and operational data privacy risk environment. FTI Consulting’s Information Governance, Privacy and Security team delivers practical business solutions that not only help organizations reduce the risk associated with privacy compliance obligations, but also recognize value in their personal data.

Data privacy - growing your data the right way
Growing your data the right way is also the key to growing your business.

Corporate data privacy priorities

Validating personal data
Validating Personal Data Handling and Security Practices of Third Party Partners
Value of personal data
Increasing the Value and Utility of Personal Data
Optimizing privacy program functionality
Optimizing Privacy Program Functionality and Enabling Automated Controls
Privacy risk awareness
Enhancing Program Integration and Privacy Risk Awareness

Protecting your data

How We Think About Privacy

Privacy is not only a regulatory compliance issue, but also a strategic business issue.

FTI believes that while policies, standards, and discrete guidance documents are extremely important, privacy risk and compliance must be action-oriented and fully integrated throughout an organization’s business functions and processes.

With this in mind, we have developed a program framework intended to provide regulatory, reputational and operational risk coverage to clients of all sizes and complexity. The framework serves as a starting point to discuss risk tolerance, program scope, specific program work activities, and high-risk areas requiring extra attention and stakeholder involvement.

FTI Consulting data privacy framework graphic

Why FTI for privacy?

Prioritization of Data Value

We work to understand client products and services and develop a strategy that reduces risk around personal data and improves that data’s value by making it more transparent, which enables clients to make more effective business decisions.

Extensive Privacy Regulatory Experience

Our global team is adept at designing and building regulatory requirements across markets (North America, EMEA, APAC). We have field experience building solutions around diverse privacy regulations including GDPR, ePrivacy, EU member state regulations, California Consumer Privacy Act of 2018 (CCPA), HIPAA, HiTECH, GLBA, 23 NYCRR 500, PIPEDA and more.

Strong Technical Expertise

We have wide-ranging experience with diverse data environments, including off-the-shelf and in-house enterprise platforms and applications.

Effective Program Execution

Our team translates high-level requirements into executable project plans and uses an array of workflows to fit the specific parameters of the project - from proven, out-of-the-box methods to custom processes designed specifically for the Corporation’s business model.

Truly Cross Functional Service

We leverage a wide range of global subject matter expertise across FTI Consulting to enhance our Data Privacy service for several specific verticals (technology, financial services, life science, healthcare and others), regions and use cases.

Data Privacy Managed Services

FTI Consulting offers data privacy managed services to provide day-to-day operational and subject matter support for organizations with a range of needs; including anything from designing and running a full data privacy program, to acting as the organization’s back office privacy staff, to providing strategic cover for certain tasks or at specific times.

Managed Services Offered

The FTI team offers expertise in executing the following responsibilities as part of day-to-day privacy program management or as specific on-call response services:

  • Data subject requests response and tracking;
  • Data protection impact assessment reviews and escalation;
  • Metrics compilation and reporting;
  • Breach logging, investigation, and notification support;
  • Records inventorying;
  • Training and internal communications development;
  • Requirements tracking and documentation support;
  • Privacy crisis event handling;
  • Strategic communications for privacy crisis events.

Learn more »

Health care information governance case study graphic

Case Study

FTI Technology Crafts Solution to Remedy Health Care System’s Data Ills

The Information Governance team at Blue Cross Blue Shield North Carolina (BCBSNC) sought to provide greater visibility into corporate data stored on its various networks, as well as on the numerous SharePoint websites within its environment.

Read more »