New Cloud-based product combines four core modules into a single platform to support GDPR compliance
7th February 2019 – Information security and compliance specialist Vigilant Software has launched GDPR Manager: an entirely Cloud-based platform to help organisations streamline GDPR compliance activities and reduce associated costs. The platform has been designed to improve the repeatability, robustness and reliability of these activities, and to generate dependable audit trails.
GDPR Manager allows multiple users within the same organisation to log on from any location and manage subject access requests (SARs), breach reports, gap analysis questionnaires and third party controls. The tool is suited to data protection officers (DPOs) and data protection managers (DPMs) in all organisations – all of whom need to streamline their GDPR compliance activity as quickly and as cost-effectively as possible.
GDPR Manager comprises four modules, each of which supports a different core aspect of GDPR compliance:
- Breach reporting: This module allows users to log any personal data breaches that occur so that they can then be reported to the supervisory authority (the ICO in the UK) within 72 hours as per the requirements of the GDPR. It also provides a clear record of the incident to help inform stakeholders of its impact.
- SAR logging: This module can be used to log any SARs (sometimes referred to as data subject access requests, or DSARs) received and keep a record of how those requests have been followed up. The right of access is enshrined within the GDPR, and organisations must respond to an SAR within fixed deadlines.
- Gap analysis: This module can be used to assess the organisation’s level of compliance with BS 10012:2017, the British standard for implementing a PIMS (personal information management system), which is closely aligned with the requirements of the GDPR. The Standard lays out a best-practice approach for protecting personal data, so the module helps organisations to identify where it needs to take action.
- Third party management: This module can be used to log any third parties that the organisation uses for processing personal data. By recording information about those third parties’ data protection practices, the customer can undertake thorough due diligence to ensure that it only engages secure and robust suppliers.
Gemma Platt, managing executive of Vigilant Software, said: “Now that the GDPR has been in place for almost a year, the challenge for organisations has moved from getting ready for its launch to implementing its requirements into day-to-day operations as smoothly and seamlessly as possible.
“By offering a single Cloud-based portal for managing four of the most important and arduous aspects of the GDPR, our GDPR Manager tool will help organisations achieve and demonstrate compliance cost-effectively, quickly and easily. There are so many knock-on benefits for meeting the GDPR’s requirements, so the benefits of this solution should be far-reaching.”
GDPR Manager complements two of Vigilant Software’s existing products: the Data Flow Mapping Tool, which creates data flow maps and reports to support data protection by design, and its Data Protection Impact Assessment (DPIA) tool, which helps organisations conduct DPIAs in line with GDPR requirements.
Vigilant Software plans to bring in new channel partners and consultants who are interested in adding a suite of Cloud-based information security risk assessment modules to their portfolio. For information on GDPR Manager, visit [insert link].
About Vigilant Software
Vigilant Software aims to make compliance easy. The company develops industry-leading tools for intelligent, simplified compliance, including ISO 27001 risk management and the GDPR. Drawing on years of experience in developing and deploying risk management tools and services, its product range provides businesses with regulatory software tools that save both time and money.
Its flagship solution, vsRisk, is the industry-leading ISO 27001-compliant risk assessment tool, simplifying and streamlining the information security risk assessment process for many organisations across the globe, both large and small.
Vigilant Software is a GRC International Group subsidiary alongside IT Governance, GRC eLearning, IT Governance Publishing and other group companies, providing a range of products and services to address IT governance, risk management and compliance requirements. The Group operates a one-stop shop that helps customers source, deploy and integrate the right mix of solutions for cyber security and cyber resilience, data protection, PCI DSS, penetration testing, management standards such as ISO/IEC 27001 and ISO 22301, and Cyber Essentials.
Luke McDowell / Jenni Livesley
Context Public Relations