"Our GDPR Manager tool will help organisations achieve and demonstrate compliance cost-effectively, quickly and easily"
Gemma Platt, managing executive
7th February 2019 – Information security and compliance specialist Vigilant Software has launched GDPR Manager: an entirely Cloud-based platform to help organisations streamline GDPR compliance activities and reduce associated costs. The platform has been designed to improve the repeatability, robustness and reliability of these activities, and to generate dependable audit trails.
GDPR Manager allows multiple users within the same organisation to log on from any location and manage subject access requests (SARs), breach reports, gap analysis questionnaires and third party controls. The tool is suited to data protection officers (DPOs) and data protection managers (DPMs) in all organisations – all of whom need to streamline their GDPR compliance activity as quickly and as cost-effectively as possible.
GDPR Manager comprises four modules, each of which supports a different core aspect of GDPR compliance:
· Breach reporting: This module allows users to log any personal data breaches that occur so that they can then be reported to the supervisory authority (the ICO in the UK) within 72 hours as per the requirements of the GDPR. It also provides a clear record of the incident to help inform stakeholders of its impact.
· SAR logging: This module can be used to log any SARs (sometimes referred to as data subject access requests, or DSARs) received and keep a record of how those requests have been followed up. The right of access is enshrined within the GDPR, and organisations must respond to an SAR within fixed deadlines.
· Gap analysis: This module can be used to assess the organisation’s level of compliance with BS 10012:2017, the British standard for implementing a PIMS (personal information management system), which is closely aligned with the requirements of the GDPR. The Standard lays out a best-practice approach for protecting personal data, so the module helps organisations to identify where it needs to take action.
· Third party management: This module can be used to log any third parties that the organisation uses for processing personal data. By recording information about those third parties’ data protection practices, the customer can undertake thorough due diligence to ensure that it only engages secure and robust suppliers.
Gemma Platt, managing executive of Vigilant Software, said: “Now that the GDPR has been in place for almost a year, the challenge for organisations has moved from getting ready for its launch to implementing its requirements into day-to-day operations as smoothly and seamlessly as possible.
“By offering a single Cloud-based portal for managing four of the most important and arduous aspects of the GDPR, our GDPR Manager tool will help organisations achieve and demonstrate compliance cost-effectively, quickly and easily. There are so many knock-on benefits for meeting the GDPR’s requirements, so the benefits of this solution should be far-reaching.”
GDPR Manager complements two of Vigilant Software’s existing products: the Data Flow Mapping Tool, which creates data flow maps and reports to support data protection by design, and its Data Protection Impact Assessment (DPIA) tool, which helps organisations conduct DPIAs in line with GDPR requirements.
Vigilant Software plans to bring in new channel partners and consultants who are interested in adding a suite of Cloud-based information security risk assessment modules to their portfolio.