Consultix on Concentrated GDPR Course

IT Decision-Makers and Marketers Should Pay More Attention to EuroPriSe, ISO27001 and ISO27018 Certifications For a Longlasting Positive Reputation.

Bremen, 18 May 2018. On 25 May, 2018 a new data protection age begins: On this day, the General Data Protection Regulation (GDPR) will become fully effective for all companies that process data from EU citizens. Many new draft laws are and will be based on the GDPR and assign a higher level of protection to digital information. What initially seems to be associated with a lot of time, effort and costs for companies strengthens customer loyalty and trust in the brand in the medium term and thus ensures healthy growth. As one of the largest IT analysts, Gartner predicts: “By 2020, companies that are digitally trustworthy will generate up to 20% more online profit than those that are not.” [1] Data protection compliance is therefore a real competitive advantage.

The Right Strategy Is Crucial

Entrepreneurs rightly ask themselves the question, with which strategy they can master the balancing act between data protection and profitability. Andres Dickehut, CEO of Consultix GmbH, is considered a pioneer in the field of e-privacy and compliance. "Managers must consider information security and data protection in all aspects of their work right from the start," explains the expert. "For example, the only reasonable solution for storing and processing business-critical data is the use of a private cloud with an extensive IT security concept. When selecting service providers and software solutions, companies should favor certified partners." Gartner suggests: “In fact, it is recommended to implement data minimization rules and processes at every step in the data life cycle.” [2] Consultix is cited in the report for ProCampaign, its Secure Customer Engagement Hub.

On the Safe Side With EuroPriSe, ISO27001 and ISO27018

Gartner advises: “To maintain assurance over the level of control exercised in data processors' environments, SRM [Security and Risk Management] leaders may wish to reserve the right to audit. […] Once the right to audit is obtained, SRM leaders must, from time to time, exercise that right.” [3] However, not every potential supplier accepts such a clause. In this case, certifications can point the way to the right partner and tools. Gartner suggests: “A few relevant examples for security, privacy and risk management include: ISO27001 […] (information security), […] ISO27018 (cloud privacy), EuroPriSe (privacy seal) […]” [4].

The ISO27001 standard serves as the basis for data protection certification. ISO27018 extends this concept and deals with the regulation of the processing of personal data in the cloud. EuroPriSe stands for data protection-friendly technologies and products. This certificate provides companies with the best possible protection both on the technical side and in less technical areas such as procedures, processes and documentation. Consultix with ProCampaign as the only marketing software to be EuroPriSe-certified, complies with the ISO27001 standard and is currently preparing for ISO27018. The latest version ProCampaign-Lighthouse offers, for example, the module "Permission Text Management" and thus the legally compliant administration of all permission and legal texts. "ProCampaign holds the temporary version of the consent given by the customer for each customer profile", adds Andres Dickehut.

Ignorance Does Not Protect Against Punishment

The main purpose of certificates is to promote the security of data to a decisive degree and to avoid data leaks. Andres Dickehut warns: "A breach of data protection can cause considerable financial damage and damage a company's reputation for months or even years. Fines amounting to millions or four percent of global gross sales could be imposed in the event of violations in the future. An expensive game - which can be avoided if decision-makers plan and act on a long-term basis.

About Consultix GmbH

Consultix GmbH is an internationally operating IT service provider based in Bremen. The owner-managed company was founded in 1994, is ISO 27001 certified and has emerged as a technology leader in the area of administration and management of personal data. In addition to its flagship CRM system/Secure Customer Engagement Hub ProCampaign®, Consultix GmbH offers dedicated hosting, private cloud services, integration of public cloud services, VMware services, disaster recovery, cyber security and DDoS attack mitigation. www.consultix.net / www.procampaign.com / www.colocationix.net

[1] Gartner (2017): The Gartner Digital Commerce Vendor Guide, 2017. July 2017.

[2] Gartner (2018): Three Ways the GDPR Will Affect Your Access to CRM Customer Data. April 2018*.

[3] Gartner (2018): Beyond GDPR: Select and Control Your Service Providers to Ensure Privacy Protection. March 2018*.

[4] Gartner (2018): Beyond GDPR: Select and Control Your Service Providers to Ensure Privacy Protection. March 2018*.

* NOTE: This document, while intended to inform our clients about the current data privacy and security challenges experienced by IT companies in the global marketplace, is in no way intended to provide legal advice or to endorse a specific course of action.