Mid-market financial services firms can now benefit from a fast, intelligent, and effective solution to achieving GDPR compliance, thanks to the new GDPR EXPRESS from new generation GRC solution provider OXIAL.

With the deadline for the EU’s General Data Protection Regulation (GDPR) coming into effect on 25 May 2018, the GDPR EXPRESS solution uses an automated digital compliance approach to offer GDPR compliance. The new solution is based on OXIAL’s years of experience in risk management, IT security and compliance and reflects the urgency for mid-market financial services firms to begin getting GDPR-ready.

“For bigger firms with compliance teams and the resources to allocate sufficient time to GDPR, there should be few problems getting GDPR-ready, but for mid-market organizations it is a different matter altogether,” said OXIAL CEO Eric Berdeaux. “Our GDPR EXPRESS solution removes the burden of GDPR for such businesses by using a digitised approach to ensure every requirement for GDPR compliance is met.”

Compliance is a business function in many organizations that is yet to be significantly altered by digitization. OXIAL has placed digital at the heart of its new GDPR EXPRESS solution. It comes with a number of powerful features to help address GDPR, from an initial step-by-step project plan to reporting mechanisms for the regulator and senior management.

The GDPR EXPRESS solution encourages compliance to be treated as a continuous process, advised and supported by external experts who will allow an organisation to drive GDPR more efficiently and to reach the desired results from a compliance perspective. Approached in this way— supported by automation of processes to ensure nothing falls through the cracks—means an organization knows exactly how GDPR relates to their business and data, and is able to assess what they must change to be compliant and gauge where the priorities and responsibilities lay.

“A major challenge for mid-sized firms is the sheer volume of data that must be accounted for,” Berdeaux added. “[H]ow do you find it, how do you manage and protect it and how do you ensure it is GDPR compliant? Without the know-how, time and experience of compliance teams in bigger firms, answering these questions is a significant problem and one with enormous consequences should an organisation not be able to do so.”

GDPR also has an important security element, with enormous volumes of data to keep secure. OXIAL has partnered with cyber-security provider Global Data Sentinel (GDS), to keep GDPR data safe. GDS is a cross-domain, zero-knowledge system, so all data within a network or cloud is stored encrypted, meaning even IT personnel cannot see it. GDS resides seamlessly inside in organization’s existing network, securing data from the get-go, without requiring any additional infrastructure investments.