Information security and compliance specialist Vigilant Software has launched GDPR Manager, which is an entirely Cloud-based platform designed to help organisations streamline General Data Protection Regulation (GDPR) compliance activities and reduce associated costs. The platform has been designed to improve the repeatability, robustness and reliability of these activities and generate dependable audit trails.
GDPR Manager allows multiple end users within the same organisation to log on from any location and manage subject access requests (SARs), breach reports, gap analysis questionnaires and third party controls. The tool is specifically suited to practising data protection officers and data protection managers in all organisations, all of whom need to streamline their GDPR compliance activity as quickly and as cost-effectively as possible.
GDPR Manager comprises four modules, each of which supports a different core aspect of GDPR compliance:
Breach reporting This module allows end users to log any personal data breaches that occur so that they can then be reported to the supervisory authority (the Information Commissioner’s Office in the UK) within 72 hours as per the requirements of the EU’s newly-introduced GDPR. It also provides a clear record of the incident to help inform stakeholders of its impact
SAR logging This module can be used to log any SARs received and keep a record of how those requests have been followed up. The right of access is enshrined within the GDPR and, for their part, organisations must respond to an SAR within fixed deadlines
Gap analysis A module that can be used to assess the organisation’s level of compliance with BS 10012:2017 (the British Standard for implementing a Personal Information Management System), which is closely aligned with the requirements of the GDPR. The British Standard lays out a Best Practice approach for protecting personal data, with the module helping organisations to identify where they need to take action
Third party management This module can be used to log any third parties that the organisation uses for processing personal data. By recording information about those third parties’ data protection practices, the customer can undertake thorough due diligence to ensure that it only engages secure and robust suppliers.
Gemma Platt, managing executive of Vigilant Software, explained: “Now that the GDPR has been in place for almost a year, the challenge for organisations has moved from being ready for its launch to implementing its requirements in day-to-day operations as smoothly and seamlessly as possible. By offering a single Cloud-based portal for managing four of the most important and arduous aspects of the GDPR, our GDPR Manager tool will help organisations achieve and demonstrate compliance cost-effectively, quickly and easily. There are so many knock-on benefits for meeting the GDPR’s requirements, so the benefits of this solution should be far-reaching.”
GDPR Manager complements two of Vigilant Software’s existing products: the Data Flow Mapping tool, which creates data flow maps and reports to support data protection by design, and the Data Protection Impact Assessment (DPIA) tool, which helps organisations conduct DPIAs in line with GDPR requirements.
Vigilant Software plans to bring in new channel partners and consultants who are interested in adding a suite of Cloud-based information security risk assessment modules to their portfolio.