Your company is buried in digital privacy risk.

NT Analyzer is a unique compliance tool that identifies privacy and security risks associated with apps, websites, and IoT.

The Product

Existing Legal Obligations

Today almost all companies have a consumer-facing app or website. Under privacy laws around the world, companies are obligated to know the full range of data collected from users and transmitted to third parties. Violating these laws can result in large fines, brand-damaging publicity, and potential litigation.

The Problems

Our experience with clients has shown that most companies are blind to data leakage from their apps and websites because their traditional cybersecurity solutions are focused on the company data center, not the user’s device (e.g., smartphone, computer, tablet, etc.).

Teams are also often unaware of data leakage due to a necessary reliance on external code and aggressive development cycles, which are the norm for most industries. This leads to inadvertent third party data sharing that is difficult to detect and mitigate.

Companies are forced to rely on unreliable and unverifiable statements from vendors regarding data sharing and collection.

There is also a lack of communication between the marketing, development, and legal teams due to a misunderstanding of what qualifies as “personal information” or “personal data” under relevant law.

The NT Analyzer Solution

NT Analyzer steps into the shoes of a user and removes the blind spots, allowing a company to catalog all of the collected and disclosed data, and identify relevant risk.

After reviewing network traffic from the end-user’s device, NT Analyzer identifies all data sharing and categorizes it under relevant legal risks. All legal findings are protected by attorney client privilege.

Once a risk has been discovered, the company can view the specific network traffic in their custom dashboard and quickly mitigate.

From there, the marketing or development team can see an objective picture, empowering companies to solve their most glaring data protection issues and facilitating the conversation between development and legal departments.

Abstract technology image

How It Works

Technical dashboards

Based on hosts, data of interest, legal tests, and geolocation.

Legal modules

Specific legal analyses for each relevant legal area.

Network traffic viewer

Based on data of interest, view all matching network traffic requests and responses in our proprietary viewer.

Where we can test

  • Locally in a Norton Rose Fulbright office
  • In the cloud, by region
  • On-site, if requested by a client
  • Elsewhere as requested by client
MEET OUR TEAM

Product Advantages:

Our tool suite maps technical findings to the law

NT Analyzer takes the technical findings and applies various legal baselines (ePrivacy, CCPA, GLBA, COPPA, HIPAA, and others). For example, for CCPA, NT Analyzer helps to identify the transmission of data to third parties that may qualify as a “sale” so that companies can follow up and obtain appropriate agreements. For HIPAA, NT Analyzer identifies the transmission of PHI so that companies can review where they may need either additional business associate agreements or to remove third party tracking. For ePrivacy, the tool suite shows where there is a transmission of data stored on terminal equipment, together with identification of cookies and device “fingerprinting.”

Eagle-like vision

An eagle sees the entire landscape, but can spot a rabbit from 3.2 kilometers (2 miles). Similarly, NT Analyzer’s technical dashboards allow you to not only see the entire data collection landscape in high level summaries, but also to immediately drill down—in the same display—to a single data collection event: a single HTTP Request transmitting a particular piece of data of interest to a particular server.

Easy and Useful

NT Analyzer provides Chief Privacy Officers and CISOs with three mission-critical views:

  • Dashboards for viewing data collection practices across various devices and overtime.
  • Network Traffic Viewer for deep technical drill downs to see specific data transmissions.
  • Legal Modules that consist of statute-specific and regulation-specific reports based on specific legal baselines such as GDPR, ePrivacy, CCPA, HIPAA, GLBA, VPPA, COPPA.
  • Data Exports on request if you want data from a dashboard or table for your “record of processing” or uploading into your privacy management software.

Addressing privacy exposures head-on

Most privacy-related enforcement actions, lawsuits, and PR blow-ups happen because CPOs and CISOs lacked visibility into the actual data collection behaviors of their apps, websites, and IoT services. The core problem is that the traditional approach to privacy relied primarily on the representations of vendors or companies involved in marketing or ad operations. That is not due diligence. NT Analyzer shifts the paradigm. It empowers CPOs and CISOs by providing detailed insights about the company’s data collection footprint—including granular insights into third party data collection that was previously a black box.

We level the playing field

NT Analyzer provides you with the information and insights you need to manage privacy effectively. NT Analyzer will show you:

  • What data is being transmitted
  • Which companies receive it
  • The physical location of the server receiving the data
  • The legal impact

Easy technical drill down

NT Analyzer is powerful enough that your developers can easily use the information from NT Analyzer to conduct remediation. For example, select any search term or any Internet host and use NT Analyzer’s Network Traffic Viewer to immediately drill down into the raw HTTP Request/ Responses to find the specific transmission details needed to demonstrate the issue to your engineering team. With NT Analyzer, the right level of detail is always only a few clicks away. We believe the visibility and accountability created by this level of insight is a critical, yet often missing, piece of the CPO and CISO’s risk mitigation plan.

No other solution compares

No other commercial tool tracks personal data sharing at such a technical level, much less applies the technical facts to relevant legal baselines.

Contact Us

For more information about NT Analyzer or to schedule a demo of the tool suite, please send us a request using the form.