Vigilant Software introduces GDPR Manager to streamline data protection and compliance procedures

Information security and compliance specialist Vigilant Software has launched GDPR Manager, which is an entirely Cloud-based platform designed to help organisations streamline General Data Protection Regulation (GDPR) compliance activities and reduce associated costs. The platform has been designed to improve the repeatability, robustness and reliability of these activities and generate dependable audit trails.

GDPR Manager allows multiple end users within the same organisation to log on from any location and manage subject access requests (SARs), breach reports, gap analysis questionnaires and third party controls. The tool is specifically suited to practising data protection officers and data protection managers in all organisations, all of whom need to streamline their GDPR compliance activity as quickly and as cost-effectively as possible.

GDPR Manager comprises four modules, each of which supports a different core aspect of GDPR compliance:

Breach reporting This module allows end users to log any personal data breaches that occur so that they can then be reported to the supervisory authority (the Information Commissioner’s Office in the UK) within 72 hours as per the requirements of the EU’s newly-introduced GDPR. It also provides a clear record of the incident to help inform stakeholders of its impact

SAR logging This module can be used to log any SARs received and keep a record of how those requests have been followed up. The right of access is enshrined within the GDPR and, for their part, organisations must respond to an SAR within fixed deadlines

Gap analysis A module that can be used to assess the organisation’s level of compliance with BS 10012:2017 (the British Standard for implementing a Personal Information Management System), which is closely aligned with the requirements of the GDPR. The British Standard lays out a Best Practice approach for protecting personal data, with the module helping organisations to identify where they need to take action

Third party management This module can be used to log any third parties that the organisation uses for processing personal data. By recording information about those third parties’ data protection practices, the customer can undertake thorough due diligence to ensure that it only engages secure and robust suppliers.

Gemma Platt, managing executive of Vigilant Software, explained: “Now that the GDPR has been in place for almost a year, the challenge for organisations has moved from being ready for its launch to implementing its requirements in day-to-day operations as smoothly and seamlessly as possible. By offering a single Cloud-based portal for managing four of the most important and arduous aspects of the GDPR, our GDPR Manager tool will help organisations achieve and demonstrate compliance cost-effectively, quickly and easily. There are so many knock-on benefits for meeting the GDPR’s requirements, so the benefits of this solution should be far-reaching.”

GDPR Manager complements two of Vigilant Software’s existing products: the Data Flow Mapping tool, which creates data flow maps and reports to support data protection by design, and the Data Protection Impact Assessment (DPIA) tool, which helps organisations conduct DPIAs in line with GDPR requirements.

Vigilant Software plans to bring in new channel partners and consultants who are interested in adding a suite of Cloud-based information security risk assessment modules to their portfolio.

About the Author
Brian Sims BA (Hons) Hon FSyI, Editor, Risk UK (Pro-Activ Publications) Beginning his career in professional journalism at The Builder Group in March 1992, Brian was appointed Editor of Security Management Today in November 2000 having spent eight years in engineering journalism across two titles: Building Services Journal and Light & Lighting. In 2005, Brian received the BSIA Chairman’s Award for Promoting The Security Industry and, a year later, the Skills for Security Special Award for an Outstanding Contribution to the Security Business Sector. In 2008, Brian was The Security Institute’s nomination for the Association of Security Consultants’ highly prestigious Imbert Prize and, in 2013, was a nominated finalist for the Institute's George van Schalkwyk Award. An Honorary Fellow of The Security Institute, Brian serves as a Judge for the BSIA’s Security Personnel of the Year Awards and the Securitas Good Customer Award. Between 2008 and 2014, Brian pioneered the use of digital media across the security sector, including webinars and Audio Shows. Brian’s actively involved in 50-plus security groups on LinkedIn and hosts the popular Risk UK Twitter site. Brian is a frequent speaker on the conference circuit. He has organised and chaired conference programmes for both IFSEC International and ASIS International and has been published in the national media. Brian was appointed Editor of Risk UK at Pro-Activ Publications in July 2014 and as Editor of The Paper (Pro-Activ Publications' dedicated business newspaper for security professionals) in September 2015. Brian was appointed Editor of Risk Xtra at Pro-Activ Publications in May 2018.

Related Posts