Vigilant Software launches
GDPR Manager to streamline
data protection and compliance
GDPR Manager comprises four modules,
each of which supports a different core
aspect of GDPR compliance:
Gemma Platt, Managing Executive of
Vigilant Software
nformation security and
compliance specialist Vigilant
Software has launched GDPR
Manager: a cloud-based platform to
help organisations streamline GDPR
compliance activities and reduce
associated costs.
I
The platform has been designed to
improve the repeatability, robustness
and reliability of these activities and to
generate dependable audit trails.
The tool is suited to data protection
officers (DPOs) and data protection
managers (DPMs) in all organisations
– all of whom need to streamline their
GDPR compliance activity as quickly and
as cost-effectively as possible.
www.intelligentciso.com
|
Issue 11
There are so many
knock-on benefits for
meeting the GDPR’s
requirements, so
the benefits of this
solution should be
far-reaching.
Gemma Platt, Managing Executive of
Vigilant Software, said: “Now that the
GDPR has been in place for almost a
year, the challenge for organisations has
moved from getting ready for its launch
to implementing its requirements into
day-to-day operations as smoothly and
seamlessly as possible.
“By offering a single cloud-based
portal for managing four of the most
important and arduous aspects of the
GDPR, our GDPR Manager tool will help
organisations achieve and demonstrate
compliance cost-effectively, quickly
and easily. There are so many knock-
on benefits for meeting the GDPR’s
requirements, so the benefits of this
solution should be far-reaching.”
GDPR Manager complements two of
Vigilant Software’s existing products:
the Data Flow Mapping Tool, which
creates data flow maps and reports
to support data protection by design
and its Data Protection Impact
Assessment (DPIA) tool, which helps
organisations conduct DPIAs in line with
GDPR requirements. u
57
GDPR Manager allows multiple users
within the same organisation to log on
from any location and manage subject
access requests (SARs), breach reports,
gap analysis questionnaires and third-
party controls.
• Breach reporting: This module
allows users to log any personal data
breaches that occur so that they can
then be reported to the supervisory
authority (the ICO in the UK) within
72 hours as per the requirements of
the GDPR. It also provides a clear
record of the incident to help inform
stakeholders of its impact.
• SAR logging: This module can be
used to log any SARs (sometimes
referred to as data subject access
requests or DSARs) received and
keep a record of how those requests
have been followed up. The right of
access is enshrined within the GDPR
and organisations must respond to
an SAR within fixed deadlines.
• Gap analysis: This module can be
used to assess the organisation’s
level of compliance with BS
10012:2017, the British standard
for implementing a PIMS (personal
information management system),
which is closely aligned with
the requirements of the GDPR.
The standard lays out a best-
practice approach for protecting
personal data, so the module helps
organisations to identify where it
needs to take action.
• Third party management: This
module can be used to log any
third parties that the organisation
uses for processing personal data.
By recording information about
those third parties’ data protection
practices, the customer can
undertake thorough due diligence to
ensure that it only engages secure
and robust suppliers.