Modern information and communication technologies represent an essential part of business processes. Personal information is digitally stored, processed, and transmitted over networks. Institutions in business and administration, as well as every citizen, depend on the flawless functioning of the IT systems. Improper or abusive use of this technology can lead to a violation of data protection, resulting not only in significant fines but also causing irreparable damage to the company’s reputation.
The General Data Protection Regulation (GDPR) introduced by the EU is a directive aimed at protecting natural persons in the processing of personal data and ensuring the free flow of such data. Since May 25, 2018, it serves as the foundation for general data protection laws in the EU, consisting of 99 articles and 173 recitals, posing challenges for many companies. These businesses must analyze their processes for handling personal data and establish procedures that could potentially endanger individuals. The degree of potential threats is to be assessed through a Privacy Impact Assessment and documented in a Data Protection Impact Assessment. These requirements are comprehensively supported in CRISAM®.
Pre-built templates and reports help you to set up an effective data protection management system in the company in a short time. The included Content Library translates the legal framework into practical implementation measures and you benefit from our consulting experience and the feedback of the CRISAM® community. The compliance mappings that are part of the content libraries allow you to demonstrate compliance with the GDPR, among other things. By continuously updating the Content Library, CRISAM® users benefit especially from changes resulting from current interpretation and case law.
By linking the CRISAM® DSMS with the CRISAM® Information Security Management System, you can seamlessly adopt the processing security assessment mandatory in Art. 32 DSGVO.
Did you know that with CRISAM® you combine all disciplines of risk management in one software? CRISAM® is a standard software solution for governance, risk and compliance management.
- Directory of processing activities at the push of a button
- Over 25 national or state-specific blacklists and whitelists
- Pre-assessment and implementation of data protection impact assessments
- Automatic generation and verification of technical
and organizational measures (TOMs)- Compliance reports on DSGVO, ISO/IEC 27701:2019
and ISO/IEC 29151:2017 at the push of a button- Efficient integration of information security and data protection
- Process support through predefined workflows
- Predefined information