Subjects / Centralised Personal Data Audit
With the system fully configured, following the completion of audits,
definition of data classes, field location of data types held and internal
resources responsible for their management, GDPR Auto allows for individual
subject entry to be executed either manually or via API connection to
existing data repositories.
GDPR Auto comes complete with fully documented APIs and can read and
write to/from any existing data repository, allowing for the bulk linking of
subjects and data held.
Alternatively, for smaller organisations or where data is fragmented along
multiple electronic and physical locations, GDPR Auto further allows for
manual input and editing.
GDPR Auto does not store any personal data other than the subject’s name
and surname, email address and mobile phone number – the latter two fields
being fundamental for subject verification whenever interaction requests are
Having previously identified all data fields being stored for each subject and
their electronic or physical location, GDPR Auto will, at this stage create a
data map, linking individual subjects with data and their repositories.
Upon subject creation, the platform will additionally audit the legal grounds
for processing for all types of data held, indicating whether consent has been
granted, together with the date and term validity of the same.
This centralised view of all the types of data held across systems, drillable
down to a single subject is in turn automatically fully audited, recording
both internal entry modifications and subject-initiated interaction requests,
allowing to demonstrate compliance with provisions set forth in GDPR.