It was used to manage IT and control risks, specifically around network infrastructure and particular assets.
The easiest route - we'll conduct a 15 minute phone interview and write up the review for you.
Use our online form to submit your review. It's quick and you can post anonymously.
It was used to manage IT and control risks, specifically around network infrastructure and particular assets.
As a solution for IT risks, it is a very good product. I think it's structured in a way that makes it good to track IT-specific risks and controls.
Speaking about the room for improvement in the solution, I mainly feel that it is not a GRC tool. So, I think that it is more of an IT risk management tool. Basically, it's very good at IT business management. It's not a good tool for governance risk and compliance beyond IT risk management. If you want to use it for business, financial, reputational, health and safety risks, or any other type of risk relevant to your industry or your organization, it's not ideal, and you probably have to get a different system. In short, it does risk management better than most generic GRP tools. However, most of the good GRC tools that are business focused also do IT risk management well enough, which is why OneTrust GRC is not a good enough solution by itself.
In future releases, the solution should work over its ability to manage business risks by incorporating something like an enterprise risk management module.
I used OneTrust GRC six months ago. Also, I am a customer of the solution who has used it for three years.
I rate the solution's stability an eight on a scale, with one being low stability and ten being high.
I rate the solution's scalability an eight on a scale, with one being low scalability and ten being high. Also, 200 people are using the solution.
I didn't contact the technical support team, and I can't rate them.
Previously, I tried different ones like ServiceNow and several other product lines. Instead of having to choose one, we were looking for alternatives from an IT risk management point of view and found that there were several different tools for businesses. In my new organization, we no longer use OneTrust GRC. Also, I would not recommend my current organization to use OneTrust GRC.
I rate the initial setup a seven on a scale where one is difficult, and ten is easy for IT risk management. For business risk management, I rate it a three. So, the rating depends on what you are using the solution for in your organization.
The deployment process was completed before I joined the organization. In our organization, we require around two people to maintain the solution.
I haven't seen any return on investment using the solution. If I had the opportunity, I would use a different solution. This is because the use cases for the solution are too narrow.
On a scale from one to ten, where one is cheap, and ten is too expensive, I rate the solution a seven since it falls under the pricey side. Our company was making a yearly payment of 250 for the solution's licensing part. Also, there were no additional charges to be paid other than the standard licensing fees. However, the solution's price depends on the modules that one selects.
I would tell those planning to use the solution that they make sure that they are comfortable with the solution and are not duplicating their efforts elsewhere in the business since it would give them the ability to manage risk in all of the areas that they want to manage using the solution. Overall, I rate the solution a five out of ten.
We are using OneTrust to implement data privacy within our organization.
We have data from Jira regarding addiction related to Europe as well as California. Additionally, we have data related to the Indian Data Protection Bill. Therefore, GDPR compliance is highly beneficial. The CPA also benefits from this. Data subjects are granted specific rights, known as DSR, making DSI crucial. With OneTrust, communication with data subjects is streamlined, allowing them to make requests, which we then process and fulfill using Alpha OneTrust. If a supervisory authority requests documentation from our company, we prepare Article 30 documents.
Everything is interconnected. While it might seem overwhelming to select specific digital options, each feature offers benefits. They provide extensive settings and details.
There are several areas for improvement. One is the integration capability. Connecting various DSAR systems can be time-consuming if a single integration takes months to complete. This integration challenge becomes more pronounced as data volumes grow and spread across different systems. One potential solution could be dedicating resources to support integration efforts, preferably individuals familiar with the OneTrust platform and the systems it needs to integrate. This approach could streamline the integration process and mitigate potential missteps, even for non-technical personnel.
I have been using OneTrust GRC for almost two and a half years.
If I'm in a meeting and presenting somebody on OneTrust. It takes some time to load from one page to another page.
I rate the solution's stability an eight out of ten.
Scalability is not an issue.
Technical support is good. Whatever knowledge they have, they are providing us. They come and perform the things we want exactly. We are in between the support of OneTrust and ServiceNow. Each time, we have to contact OneTrust, then the respective system owner. The process could become better than it is now.
Positive
If we use a particular module and find it very beneficial, then it is a good value for the price. There have been instances where we haven't used some modules despite paying for them last year. The pricing is reasonable, but we need to ensure we're maximizing the value of what we're paying for.
OneTrust GRC integration can present some challenges, particularly for those without a technical background. It involves instances that may require some knowledge. Connectivity issues might arise, leading to disruptions. Despite these hurdles, efforts are being made to address and manage these challenges more efficiently.
I recommend the solution because it is cheap and valuable. Also, companies are becoming more aware of privacy. Privacy is directly proportional to these tools. OneTrust provides free certifications.
Overall, I rate the solution a nine out of ten.
