GDPR, the new European Privacy Regulation
On 14 April 2016 the European Regulation on the subject of Data Protection was finally approved. The new regulation has replaced the Directive 95/46/CE (Privacy) on the subject of personal data protection and will come into force on 25 May 2018.
This regulation introduces a set of innovations with regard to obligations, rights and subsequent risks which are relevant for companies both from an economic viewpoint (sanction up to 4% of its worldwide turnover) and in terms of reputation (possible consequences of an IT incident which might jeopardise the integrity or confidentiality of data). Therefore, companies are now expected to meet the following new demands:
- make the business transparent and accountable (thus reducing of the risk of sanctions);
- make sure that the organisation model is constantly updated and suitable;
- reduce the costs and subsequent organisational impacts.
In view of the new European regulation on the subject of privacy we have created the GDPR Module for the compliance suite CORA SUITE.
This module supports companies and organisations throughout the procedure management process by:
- guaranteeing that their compliance model is as efficient (overall cost reduction) as it is effective (suitable, updated and accountable);
- allowing for automated low added-value activities;
- engaging and empowerment of all stakeholders.
This solution is also a factor which facilitates the possible certification mentioned by GDPR thanks to what is known as “risk-based” approach and compliance with the relevant standard regulations (EU 2016/679, ISO/IEC 27001:2013, ISO/IEC 29100).
GDPR and big companies
The GDPR.NET solution is the extension of the solution for Large / Complex Accounts, that is those subjects that require of a solution that implements all that is present in the CORA SUITE GDPR solution through collaboration mechanisms (process management and delegation and approval work-flow).
Download the full brochure of CORA GDPR