Supervisor for GDPR

Owned by Tony Luzar (Deactivated)
Nov 03, 2020
2 min read

Introduction

Supervisor combined with the ayfie Extractor module provides tools to create GDPR reports and provides advanced linguistic components to extract personally identifiable information in your data sources.

It helps companies be GDPR compliant in several ways:

What information does my organization hold?

The first step in the process of becoming GDPR compliant is to know where all your data is, what content it includes, and who can access it. 

Supervisor for GDPR helps you organize all the information you have, both in structured form (meta fields, descriptions) and the unstructured data that sits inside your documents, scanned files, e-mails and in archive solutions.  Supervisor understands your text and extracts the important information for you so you do not have to read through all your documents to find where you store personal and sensitive personal data. 

The Supervisor report engine allows you to define where you want to look and what information you want to extract, such as person names, personal identification number, addresses, e-mails or bank account numbers. 
The report will allow you to display what and where the information is and enable you to start moving, cleaning or updating access rights. Reports can be scheduled to keep track of changes made in the environment over time. The afyie index will automatically update when changes are made and Supervisor will make those changes transparent. 


Subject access requests

When an organization receives a request, they need to be able to provide information on where they store personal data and who has access. Supervisor allows you to generate reports filtered on a specific person to identify what data is stored for that person.
Supervisor reports can be exported to csv, Excel spreadsheets or PDFs to further refine or format the report before sending. 


Data Portability

Since we have the personal information inside our index and database, extracted from various sources, the Supervisor for GDPR product can be used to mine that information into a readable format like PDF or Excel. 
 

Breach Notification

Organizations must provide notification within 72 hours of a breach. There are two requirements to meet in a GDPR breach: First, notify customers/individuals and second, notify the Data Protection Authority (DPA).  The notification will need to include a description of what types of data, number of records and the number of individuals exposed. 

If you believe you have had a breach, create a report for the source or business application that was breached and export the personal data contained within those systems. 

ayfie