A comprehensive, integrated and automated system enabling organisations to map their data collection and processing infrastructure and their compliance teams to efficiently control, track, manage, document and demonstrate ongoing accountability for all facets of General Data Protection Regulation compliance.
Establishing, maintaining and demonstrating GDPR compliance presents organisations with a full range technical, legal and managerial challenges. The GDPR Platform covers all these disciplines by giving organisations the enterprise data governance technologies, legal and compliance controls, and managerial processes they need to efficiently meet the substantial and complex burdens imposed by the GDPR – all through a secure, cloud-based system.
Where does your organisation collect personal data?
What mechanisms are used to collect it (forms, cookies)?
Where is it stored?
Are there transfers outside the European Economic Area? If so, to which countries?
The Platform provides organisations the tooling they need to identify, categorise, assess, map and dynamically track their data collection points, storage locations and the personal data records they process.
For what purposes does your organisation collect and process personal data and are they legitimate?
If there is reliance on data subject consent, was it explicitly given upon collection?
Can consent be withdrawn as easily as it’s given?
What controls are in place to ensure compliance with the remaining GDPR principles and requirements?
Once the infrastructure is mapped, the Platform gives the methods, guidance and systems required to assess, monitor and control compliance with the full range of GDPR data collection, processing, transfer, storage, accessibility and audit requirements.
How will your organisation approach and enable the effective management, documentation and reporting of the delegation and completion of GDPR tasks across all business units and regions?
How will your teams efficiently locate those documents, analyse their findings and generate internal and regulator-mandated reports when needed?
The Platform seamlessly integrates a RACI-based project management system that empowers the oversight, coordination, delegation, communication, completion, approval, documentation and reporting as to the multitude of GDPR tasks across all participating staff – automatically storing information in a central database to further enable stakeholders to identify conformance gaps, analyse compliance status and team performance.
The Platform flexibly integrates and readily operates in parallel with existing enterprise architectures and business systems.
User specific and role based access management enables granular control of Platform data viewing, content editing, administration and management rights - including the ability to restrict the visibility of of any item or data to specified persons.
Embedded user support gives teams self-serve and easy access to focussed and applicable compliance guidance, information and other assistance as and when needed.