Tools to provide compliance with privacy regulations, such as GDPR and CCPA, and carry out tasks such as data discovery, data governance, consent management, Data Subject Rights (DSR) management, Data Protection Impact Assessments (DPIA) and managing incident response as mandated by these privacy regulations.

Encrypted communications and data exchanges for internal and external collaboration around sensitive data.

Synthetic data generation, data de-identification and anonymization, and other solutions for managing sensitive data.

Central management of data access and data privacy and security policies.

Storage infrastructure for holding data in compliance with regulations such as GDPR or data residency requirements.

Solutions to prevent the tracking and collection of the personal data of end-users.

New data privacy regulations have opened up space for a new wave of compliance-focused startups.

Digital Privacy Tools

Overview

<div>
 <h3>
 The endless flow of personal information calls for new ways of complying with privacy regulations
 </h3>
 
 Digital privacy broadly refers to the use of internet and connected services without compromising personally identifiable and sensitive data. The proliferation of internet-based services in our daily lives creates a constant flow of sensitive information from the user to these services, which has inspired regulations such as the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA) to emerge to protect consumer privacy.
 
 
 Technologies such as machine learning and natural language processing (NLP) allow companies to automate compliance-related tasks such as discovering and classifying personal information at a large scale and fulfilling data subject rights requests.
 
 
 The rise of privacy regulations, spearheaded by the GDPR, is driving demand in this space, combined with the increasing cost of a data breach, and consumers becoming more aware of the risks associated with sharing their personal data with third parties. Failure to comply with privacy regulations can result in penalties that could reach millions as evidenced by the recent fines slapped to tech giants such as Amazon and Facebook.
 
</div>

The market for compliance and privacy management tools in the US is estimated to reach USD 4.6-8.5 billion by 2025

Market Sizing

<div>
 <ul>
 <li>
 
 Covid-driven digital transformation has increased demand for solutions that enable remote collaboration and secure access to sensitive data all while remaining compliant with relevant regulations.
 
 <ul>
 <li>
 
 Very Good Security
 doubled its customer base and increased the volume of data it handled by tenfold. 
 
 </li>
 <li>
 
 Tonic
 saw its revenue increase by 600% in 2020 with 
 Harbr
 also reporting a rapid increase in demand.
 
 </li>
 </ul>
 </li>
 </ul>
 <ul>
 <li>
 
 Online retail sales grew by over 32% during the first nine months of 2020, resulting in higher volumes of user data passed on to online retailers.
 
 </li>
 </ul>
 <ul>
 <li>
 
 Authorities indicate that existing regulations (such as the GDPR and CCPA) will continue uninterrupted. In an unexpected move, Brazil reversed its decision to postpone implementation of its privacy regulations.
 
 </li>
 </ul>
 <ul>
 <li>
 
 Privacy concerns have deterred mass adoption of contact tracing technology, which have allowed some governments to track and curb the spread of the Covid-19 virus.
 
 </li>
 </ul>
 
 
</div>

COVID19-IMPACT

Market Mapping

The digital privacy space includes companies which cater to both enterprises and end consumers. Most of the companies offering solutions to enterprises are in the business of providing solutions to comply with regulations such as the GDPR and CCPA, with several other companies offering solutions to collaborate on, store, and carry out data processing on sensitive information without compromising privacy.The industry has seen a hike in the number of new startups, with close to 60% of the startups founded after 2016 and more than two-thirds currently in the early/growth stage. This increase is driven by the emergence of the GDPR and other regulations that have followed. The disruptors offer a wide range of patented and AI-based solutions to support organizations across various areas of privacy compliance and have seen their revenues grow significantly over the last three years. In September 2020, Inc. magazine named OneTrust the fastest growing company in the US, recording revenue growth of more than 48,000% from 2016 to 2019 and reaching USD 70 million revenue in 2019. OneTrust was also the highest valued disruptor, with its last funding round in April 2021 placing a value of USD 5.3 billion on the company.The incumbents largely include IT consulting giants that have ventured into this space through a mix of in-house development and acquisitions.

The Disruptors

The disruptors for compliance solutions largely include companies that were founded after 2016, in line with the emergence of the GDPR and other privacy regulations. These companies are pure-play privacy solution providers, unlike most of the incumbents, and provide a solution/platform that leverages technologies such as AI and machine learning algorithms to automate tasks related to privacy compliance.Disruptors are also offering privacy-preserving solutions for companies to manage, access, share, and process sensitive data without compromising privacy. For enterprises that do not want to maintain their own compliant storage infrastructure, disruptors are also offering data storage solutions that come equipped with enough protection to comply with privacy regulations and other data residency requirements.Lastly, the disruptors in the business-to-consumer (B2C) space provide applications that end-users can sign up and use to enhance their privacy online. Some companies in this section already provide a similar product for enterprises. The single-user version for consumers is provided for free or a nominal charge.

Disruptor Funding History

The Incumbents

<div>
 
 The incumbents in this space include established companies such as TrustArc and Ensighten which were already operating in the digital privacy space, and companies such as Accenture, IBM, and other technology consulting giants that have expanded offerings to provide compliance related services either internally or through acquisition. Each incumbent here provides their own variant of a platform/solution for organizations to achieve compliance with privacy regulations. Incumbents have working partnerships with other companies (including disruptors) in the space.
 
</div>

Digital Privacy Tools

Digital Privacy Tools

About EDGE

Contact Us

Resources

Area of Focus

Technology Research Made Effortless