We have been assisting both large organisations and SME’s over the past 22 years to comply with the plethora of rules, regulations and standards required for them to operate in their industry sector. This year has been a bumper year for compliance with revised standards of ISO 9001 & 14001, the introduction of ISO 45001 and the new heavily publicised General Data Protection Regulation standard.
From a governance viewpoint, having another corporate obligation to the ever growing list is easier to handle if you have a system to manage compliance.
The uncanny timing of the data breaches by Cambridge Analytica, Facebook, and Carphone Warehouse in conjunction with the go live date for the GDPR has focused the minds of business leaders in all sectors on reducing the threat of potentially severe financial penalties and reputational damage as the flagrant use of personal data by social media giants has outraged the general public and increased the spotlight on questionable activities.
While GDPR is comprehensive, the main principles as summarised by the Information Commissioners Office (ICO) are:
- Lawfulness, fairness and transparency
- Purpose limitation
- Data minimisation
- Storage limitation
- Integrity and confidentiality (security)
The old adage that `a dog is not just for Christmas` is an appropriate analogy as while the initial focus will have been on creation of the policies and processes for GDPR compliance, maintenance of these items may not have been considered.
The ongoing administration of GDPR once the consultants have left the building or the project team has disbanded is the acid test. Ensuring the spreadsheets are maintained, emails have been addressed and requests answered within agreed timeframes will tie up internal resources who will have other responsibilities.
To reduce the paper handling and ease the burden of manual transactions, BusinessPort have created software that centralises all actions necessary to control GDPR. The system is flexible to allow the processes to be tailored and provides the capability to map, visualise and manage the processing of personal data in the most efficient manner.
With complete clarity of individual responsibilities and easy to understand process maps, there is a high level of transparency that supports governance, providing the evidence to withstand audit and delivers the assurance that the regulation is being maintained.
While some solutions offer standard templates, our automated workflow drives the process end to end saving time, minimising resources and ensuring compliance. Security controls ensure that your people, whether general user or Data Controller, only see what they should while administrators have access to a wide range of reports to facilitate maintaining compliance.
Ultimately, the Agility GDPR software provides the confidence that the processes followed within the organisation continue to meet the regulation – and that all personnel within the organisation remain fully compliant with the laws of Data Protection.
Simplifying Complexity of Multiple Standards
Whether you have one regulation such as GDPR to comply with, or a multitude of ISO and industry specific standards, Agility software simplifies the complexity and provides a single source of truth for your company as our extensive client base can testify.
We are holding free demonstrations at our Aberdeen Office on Queens Road on how best to maintain GDPR using our Agility software from early August, as well as sessions in Manchester.
If you think, “crikey, this is just what I need”, and would like a web demo, please contact Daniel.Christian@BusinessPort.net