“We believe that by upholding the values set by the GDPR, by helping the customers to comply with the existing regulations, and by building trust with their users, we demonstrate the best product value.”
Trust, traceability and transparency are values that we hold in high regard at Cybernetica. We are well-known for our interoperability solution – the Unified Exchange Platform (UXP) that helps our customers to maintain secure data exchange. However, the rise of data awareness has prompted us to expand our product portfolio to ensure better compliance with privacy regulations as well as induce trust. Both of our below described solutions are intended to work with interoperability platforms, such as the UXP. They strengthen secure data exchange by driving the data process closer to the data subject.
Privacy regulations such as GDPR impel companies and governments to demonstrate their data transparency. Our new product Access Tracking (ATR) helps end-users monitor and trace who has accessed their data via interoperability platforms. Consequently, our product helps both the citizen who wants a better overview of processed data, and the organization who is under pressure to comply with privacy standards. For example, Access Tracking helps to follow the criteria set by GDPR article 15, which concerns the data subject’s access rights and information regarding the processing of their data, along with the general principle of transparency.
While Access Tracking keeps the citizen informed about their data, our Consent Management System (CMS) goes one step further, and gives sovereignty over who can process ones’ data, back to the end user. Thus, via Consent Management System the data subject can decide by whom and for which purposes their data can be processed. CMS ensures that data are processed only for purposes agreed to by the citizen. Therefore, the general principles of purpose limitation and data minimization can be better followed. In addition, the data subject can retract their approval at any time and receive notifications about changes to terms. CMS helps to comply with multiple GDPR articles by providing means that help to follow the requirements technically and also organizationally, including articles 7 and 25, which regulate the conditions for consent and data protection by design and by default.
Our architecture supports de-centralized as well as centralized solutions. Each organisation can decide for themselves, or one institution can oversee the access attempts across organizations. This makes our solutions fitting for various enterprises.
We believe that by upholding the values set by the GDPR, by helping the customers to comply with the existing regulations, and by building trust with their users, we demonstrate the best product value. Should you be interested to know more about how the new products help you to comply with the GDPR, read more here.