Privacy Team

Castlepoint helps privacy teams efficiently manage and protect Personally Identifiable Information (PII), Payment Card Information (PCI), and Protected Health Information (PHI) across the entire enterprise. Our platform automates the discovery, classification, and governance of sensitive data, keeping you compliant with key privacy laws and regulations such as the Privacy Act, GDPR, CCPA, Data Protection Act, and Privacy Principles.

• Lawfulness, fairness, and transparency: Castlepoint’s audit and discovery capabilities ensure that all PII is identified and not misused across your network.
• Purpose limitation: Our automatic classification ensures that retention beyond the original purpose is only supported if approved by regulatory authorities.
• Data minimisation: Castlepoint's automatic classification and sentencing help you minimise risk by securely deleting personal data as soon as it is no longer needed.
• Accuracy: Our platform ensures data accuracy by locating every reference to an individual across the enterprise, enabling quick updates or corrections.
• Storage limitation: Castlepoint automatically deletes PII from the source system, ensuring it cannot be restored or leaked, adhering to data security best practices.‍
• Integrity and Confidentiality (Security): Our auditing and alerting features notify you if PII is being accessed, modified, or used inappropriately.
• Accountability: As the data controller, Castlepoint enables you to demonstrate full compliance with privacy regulations across the entire enterprise.