Skip Navigation
Skip to content

HiSoftware Compliance Sheriff Privacy Module

GET STARTED

request a demo

HiSoftware Compliance Sheriff Privacy Monitoring and Reporting

Compliance Sheriff is a comprehensive solution for Internet privacy compliance management. Here are some of the specific areas of testing, monitoring and reporting that are included:

Privacy - Data Collection

  • Privacy Statement Links: Every page should contain a link to your website’s privacy policy. Validates Privacy Policy links exists on pages and forms
  • Privacy Statement Links for Forms: Every page with a mailto link should contain a link to your website’s privacy policy. Validates all pages with mailto links have a privacy policy link.
  • Pages that Use Forms: Pages that collect and submit data can present Privacy issues. Identifies all form elements, if any, located on a page.
  • Forms Using the GET Method: Forms that submit data using the GET method can present Privacy issues. Identifies all form elements, if any, located on a page that use the GET method.
  • Input and TEXTAREA Elements: This check identifies all Input elements located on a page.

Privacy - Tracking / Compliance

  • P3P Policy Reference - Root Folder: When a Web site is P3P enabled, the Web site P3P policy reference file (p3p.xml) should exist in the site's root folder. Validates that the P3P Policy reference file is found in the site's root folder.
  • P3P Policy Reference - Site Pages: When a Web site is P3P enabled, every page should reference the Web site P3P policy reference file. Validates that a Link Element that points to a P3P Policy reference file is found in your page.
  • IMG Element Web Beacons: Identifies all IMG elements, if any, located on the page that have a src attribute pointing to an external website.
  • Input Elements of Type Image Web Beacons: This check identifies all Input Elements of Type Image, if any, located on the page that have a src attribute pointing to an external Web site.
  • Cookie Handling: Identify pages setting http-cookies, third party http-cookies, expiration http-cookies, document.cookie and input use of cookies with on-click. Also, evaluates http headers to identify pages that are setting cookies. This is an essential checkpoint for identifying visitor tracking methodologies.
  • JavaScript: Identifies all pages that use JavaScript to use cookies with the Body element and locates pages where the body function has the onLoad attribute that uses setCookie, getCookie, readCookie or writeCookie. These functions are common methods of tracking visitors.

Privacy Report – Personally Identifiable Information (PII)

  • If PII Form Warn if not SSL: This check is used with the PII Check, you will be warned if PII Data is being collected and the page is not secure.
  • Privacy Policy Links - Forms with TEXTAREA Elements: Every page with a form or elements that collect PII should contain a link to your Web sites privacy policy. This check validates that, when a form element is found, an Anchor Element that states it links to a Privacy Policy is found in your content.
  • Opt-Out Lists: Every page collecting PII should contain a link to the corporate opt-out policy. This check verifies this.

Privacy Regulatory Compliance

The Privacy module can report on a number of multi-national regulatory and compliancy standards including:

  • Children's Online Privacy Act (COPPA)
  • Gramm-Leach Bliley Act (GLBA)
  • Health Insurance Portability and Accountability Act (HIPAA)
  • California SB1386 and AB 1950
  • Safe Harbor - EU
  • Section 208 - US
  • Privacy Act - US
  • UK Data Protection Act
  • Personal Information Protection and Electronic Documents Act - Canada (PIPEDA)
  • EU Data Protection Directive 1995/46
  • EU Privacy and Electronic Communications Directive 2002/58

Custom Checkpoints

With the flexibility of the HiSoftware reporting engine and technology, reports can be customized to create any type of check to meet your organization’s specific requirements.

Learn more about Compliance Sheriff for Website Privacy Compliance

Learn more about the HiSoftware Compliance Sheriff:

Ensure your enterprise online content conforms to corporate compliance standards for GRC. Contact a HiSoftware solutions expert to discuss your compliance needs.

Download the CS Privacy Module Data Sheet 58K | Need Alternative Content?

Does your organization use Microsoft SharePoint? Check out the HiSoftware Difference in Microsoft SharePoint Compliance.

Back to top