It’s not too late…
Cigref, l’AFAI and Tech In France in their “Personal Data and Information Systems“reports have identified 3 main phases for the implementation of compliance with the General Regulation on Data Protection (RGPD). The first and most important step is to identify the uses, processes and systems involved in the management of personal data.
Discover how, through 3 concrete customer cases, Simplicité, thanks to its ability to model the information system, responds quickly to this challenge of mandatory mastery of the life cycle of personal data.
Process / Sub-process
Use of data
Like them, be ready…
Tailor-made RGPD repository
Amadeus’ legal department, aware of the stakes linked to the implementation of the RGPD as of May 25,2018, wished to entrust the Architecture and Innovation unit of the CIO with the task of carrying out a study with a view to implementing a solution ensuring the management of personal data.
A POC (Proof of Concept) has therefore been engaged with Simplicité, which has made it possible to model the entirety of the IT system and thus to monitor the use and exploitation of personal data.
ITSM Information System Mapping
Alstom has chosen Simplicité to map its entire information system according to the Open Group model “TOGAF®” (applications, functions, servers, flows). The Simplicité application is a real tool for understanding and mastering the information system, enabling the separation of the energy and transport activities following the acquisition of the energy division by General Electric.
Thanks to its strong scalability, Alstom wanted to extend the perimeter of the application by processing software asset management (SAM) and personal data (RGPD). 20 million in savings over 3 years.
Knowledge of the IT: Cartography, ITSM, SAM, GDPR
The Renault Group Architecture and Innovation Department uses Simplicité as a unique tool for global control of its Information System.
As the focal point of the knowledge of the information system, Simplicité has made it possible to cover an extended perimeter covering the management and piloting of IT assets (ITSM), licenses (Software Asset Management – SAM), and of course personal data (RGPD).
GDPR: What is it? Who is concerned? Where does the regulation apply?
What is the GDPR?
The GDPR is a European regulation that applies to the processing of personal data. That is, any information that constitutes personal data, any information that relates to an identified or identifiable natural person.
Who is concerned?
This new regulation obliges controllers and processors.
- The controller: is the natural or legal person who determines the purposes and means of the processing operation.
- The processor is the processor who processes personal data.
Where does the regulation apply?
The GDPR applies throughout Europe. Please note: The Regulation also applies to all organisations which are not established in the European Union, but which target people living in the European Union.
↪ From May, 25th 2018 onwards, the companies affected by the RGPD must be up to date on the regulation put in place.
↪ Sanctions may amount to 4% of the organisation’s annual worldwide turnover or 20 million €.
Key points of the General Regulation on data protection
Right of rectification and right to “forget”.
Approval of the individual concerned.
Limitation of the purposes for using the data.
Limit conservation, preserve integrity and confidentiality.
Appointment of a Data Protection Officer (DPO).
Ease of use helps you to comply with the GDPR
Simplicité is a low-code platform that allows you to create custom applications. The platform offers you the possibility to easily and graphically model your Information System and thus comply with the new regulations on data protection (GDPR).
To find out more, do not hesitate to contact us via the form, we will be pleased to see together how Simplicité will help you in your compliance with the GDPR.