PII Data Privacy & Security Case Study
Learn how we helped an enterprise cloud-based SaaS data host with their IT security and GRC needs.
The Challenge
Cloud-based SAAS provider hosts PII data for its customers. The organization has numerous databases and applications with personal identifiable information (PII) across various departments and groups within the company. The organization has challenges around data privacy, access, GDPR compliance, and possible security incidents.
The Solution
We identified all the data sources which had PII information, determined who has access to the data, how data flows, and classified the data. We confirmed the compliance requirements for the Binding Corporate Rules (BCR), Records of Processing (RPA), and Consent were implemented. Based on business needs we confirmed if access was appropriate and identified gaps and other risks.
The Results
Anglepoint verified all GDPR controls in areas of consent, BCR, RPA, access, data classification, and threat. We then verified that patch management was implemented and working efficiently. After we reviewed the gaps, we made recommendations to the stakeholders to ensure the client was GDPR ready.
Services we provided:
Meet Our Experts
Alexander Schwarz
SAP Senior Lead Consultant
Sara Hunter
Director
Roxana Leonte-Andone
Oracle Senior Consultant
Octavian Papacica
Oracle Senior Consultant
Mandi Sue Bleau
Director
Philippe de Raet
Vice President
Dave May
Director
Kris Johnson
Chief Product Officer
Anish Patel
Chief Revenue Officer
Ravi Kohli
Founder
Brian Papay
Chief Executive Officer
John Nagle
Vice President
Zarra Leonte
Senior Director
Mari Petersen
Vice President
Steven Hastings
Senior Vice President
Shaun Padayachee
Senior Director
Divya Puri
Head of People
Scott Hair
Vice President
Jeremy Pratt
Senior Director
Ron Brill
President & Chairman