Solutions For GDPR

Home Solutions Overview Solutions For GDPR

Business Automation for GDPR

Background

The General Data Protection Regulation (GDPR) was introduced in May 2018 to ensure the EU’s data protection policies are uniform across all member countries. If data processors breach their statutory data security obligations, set out under Article 32, which requires them to “implement appropriate technical and organisational measures to ensure a level of security appropriate to the risk” of their personal data processing, then they could be fined is up to €10m or 2% of global annual turnover.

At Insight 2 Value we believe this absolutely represents a ‘challenging business moment’ – a critical moment in time – the catalyst that sets in motion a series of events and actions involving a network of people, systems and tasks where control and auditability of the process is vital.

The words of the UK Information Commissioner’s Office, the Government body responsible for Data Protection in the UK are telling –

“The most significant addition is the accountability principle. The GDPR requires you to show how you comply with the principles – for example by documenting the decisions you take about a processing activity”

The UK Payment Cards Industry Security Standards Council (PCI SSC) have calculated that If UK data breaches remain at 2015 levels, the fines paid to the European regulator could see a near 90-fold increase, from £1.4bn in 2015 to £122bn. Companies, therefore, need to be certain that they are complying with GDPR across their business.

Why IBM Case Manager for GDPR?

IBM Case Manager is a platform for designing and deploying solutions that help people gather the right content, apply analytics for faster, more accurate decisions, and take action to assure better business outcomes. Decision-makers in all industries work smarter with IBM’s award-winning Advanced Case Management (ACM) offering, which encompasses documents, and multiples data types. It provides flexible workflow controls, access to powerful analytics and dashboards, collaboration tools for internal and external workers, and complete audit tracking for compliance with industry regulations, in this instance the GDPR.

The IBM Case Manager platform is ideally suited to assisting customers in showing how they comply with some of the core GDPR principles. At the heart of Case Manager is a set of tools that enable role-based processes to hold content, data, tasks, actions and steps in one simple-to-use application to provide better outcomes. Those exception processes need to be flexible, easy to adapt and auditable – all aspects that are fundamental to IBM Case Manager’s design ethos. Finally, by making our solution available as a Cloud Solution, a customer can be up and running in weeks not months.

Solution Highlights - Pre-built Accelerators

We recognise that no customer’s processes are the same. The guidelines for GDPR compliance are well laid out and broadly understood hence we are confident that our pre-built accelerators for GDPR will significantly aid customers in compliance with GDPR. The three core solution areas are:

Data Breach Notification Management

Our data breach management solution will control the process that is initiated once the customer’s security team have identified a breach has occurred.

Subject Access Requests

Organisations are obliged to respond to a subject access request and the right to charge a fee is waived under GPDR which will inevitably lead to an increase in requests.

Privacy Risk Impact Assessments

Organisations will be required to demonstrate that they are undertaking annual risk impact assessments and provide the ICO with updates in response to those assessments.