The iConfirm platform is designed to make GDPR compliance easier by giving businesses the opportunity to obtain and document consent for processing personal data, authenticate consent-givers, restrict data processing until consent is obtained, inform individuals of the purpose of data gathering, manage access controls and generate reports, and provide an end-user portal where the user can manage their rights beyond consent, effectively communicating between the data controller and the data subject.
Mike McEwan, UK director, iConfirm, said, “On the face of it, GDPR looks like a logistical nightmare for companies. However, that doesn’t have to be the case. We believe that GDPR should be considered an opportunity, not just to secure adherence to the regulation, but actually to ensure you’re talking to data subjects that want to interact, enabling you to clean up databases and as a result increase customer loyalty and reduce churn.
“The amount of confusing and often contradictory noise in the market is causing companies real headaches. For example, much of the commentary is surrounding the ‘consent’ part of GDPR. However, in the regulation there is as much emphasis on the ‘communication’ aspect, giving data subjects the chance to retract permission and manage their rights.”
Christian Butenschon, founder and CEO, iConfirm, said, “We originally set up the platform to meet the strict privacy requirements and practices for processing personal medical data between health insurance, clinics and patients. We knew therefore, that we had the skeleton of a product that could very easily help organisations become GDPR compliant, without too much fuss or time, or having a big impact on their existing systems.
“We are looking at the UK market because we believe that there is a real opportunity to help organisations struggling with GDPR. The UK will soon be similar to the Norwegian market. It will be outside EU membership, but still very much under the obligation of being GDPR compliant.”