Privacy law compliance obligations continue to increase in complexity and scope, requiring a program that receives ongoing attention and support. This final installment of a four-part series on privacy programs discusses assessing and maintaining the program, including insights from lead privacy officers at Johnson Controls, Yahoo, Toyota Financial Services, T‑Mobile and AT&T. Parts one, two and three addressed privacy’s organizational structure; coordination with other business units; program scope; the gap analysis; obtaining buy-in; and whether and how to use automation tools and other outside resources. See our two-part series “Evaluating Privacy and Cybersecurity Risks in Emerging Technology Transactions”: Artificial Intelligence and Education Technology (Sep. 28, 2021); and Biometrics, Financial Technology and Cryptocurrency (Oct. 5, 2021).