GDPR
solution
overview

Seat based pricing along with expert implementation and training services
make our solution both affordable and indispensable.

Compliance assured

Solvassure’s automated data gathering, escalation and resolution functions alleviate the time and effort involved in collating management information and put the confidence back into presenting it. Our solution can be applied to any part of a business and questions are individually tailored to the organisation’s needs.

Accountability and Governance

Systematic controls ensure that accountability and governance is managed comprehensively using regulatory material from the Information Commissioner’s Office.

  • Key responsibilities assigned to Data Protection Officer role.
  • Re-usable Data Protection Impact Assessment templates.
  • Assurance checks for records and categories of data held.
  • Organisational security standards monitoring.
  • Codes of conduct and certification handling.
  • Embedded handover and on-boarding activities.
  • Management committee and NED governance tracking.
  • EU Directive publication accessible in rules repository.
  • ICO guidance publication accessible in rules repository.

Key Areas to Consider

Systematic controls ensure that key areas to consider are managed comprehensively using regulatory material from the Information Commissioner’s Office.

  • Data source register tracks lawful basis for processing.
  • Supplier contracts register tracks regulatory clauses.
  • Assurance checks for consent of data subjects and children.

Individuals’ Rights

Pre-defined workflows ensure that individuals’ rights are managed comprehensively using regulatory material from the Information Commissioner’s Office.

  • Process steps for “right to be informed”.
  • Process steps for “right of access”.
  • Process steps for “right to erasure”.
  • Process steps for “right to restrict processing”.
  • Process steps for “right to data portability”.
  • Process steps for “right to object”.
  • Process steps for “rights for automated profiling”.
  • Process steps for “subject access requests”.

Data Breaches

A user triggered process ensures that data breach reports are managed comprehensively using regulatory material from the Information Commissioner’s Office.

  • Data breach activities initiated and time monitored.
  • Actions chased and stakeholders informed automatically.
  • Whistleblowing procedure with evidence collection.

Data Transfers

A user triggered process ensures that data transfers are managed comprehensively using regulatory material from the Information Commissioner’s Office.

  • Process steps for “transfer of data”.

Project Assurance (PRINCE2)

PRINCE2 project controls ensure that the implementation is managed comprehensively using best practise material from Axelos (a joint venture between the UK Government and Capita).

  • Executive board and control mechanisms established.
  • Key roles defined and responsibilities assigned.
  • Core documentation raised and authorised.
  • Workstream activities initiated and monitored.
  • Deliverables checked and exceptions recovered.
  • Implementation handover to business-as-usual.

Find out more about Solvassure