ahead
Independent Software Vendor (ISV) Bern, Zürich, Barcelona
The ahead app is your companion for sharing knowledge, culture and communication
.
Situation
.
Before the launch of ahead and https://www.aheadintranet.com/de/, the team wanted to make sure that everything was in place in order to:
- Safely handle and protect the following types of information:
- Personal Identifiable Data (PID) of Customers, Partners and Employees
- Any other type of data that customers will share or store using the ahead App
- Wanted to get independent validation that data management, processes and governance are current and compliant:
- Public Website, Production Environment (O365, Azure), and DevOps
- Wanted to get all the accompanying legal and supporting documents ready:
- Data protection declaration, Terms of Use, specific FAQ re. GDPR/DSG
Solution
LEANmade conducted a Privacy & Legal Assessment to establish the biggest risks and opportunities. This included:
- Data Protection
- Review of data management and access policies to ensure access to sensitive customer information is kept at an absolute minimum, and fully documented
- Legal & Compliance
- Creation of up-to-date documents and declarations to ensure full compliance
- Transparency & Trust
-
- As a digital native company, the ahead team is very clear about:
– customer data is handled with high standards of security and data protection
– based on state-of-the-art enterprise platforms and best practices
– properly documented at every turn, in full transparency
Results
.
- Following the initial Assessment and recommendations, LEANmade’s delivered:
-
- Data protection declaration (Datenschutzerklärung)
- Terms of Use (Nutzungsbedingungen)
- FAQ for customers on how ahead handles Data-Privacy and -Security
- As our Privacy and Compliance specialists truly understand IT, we were able to deliver a quick turn-around of the initial assessment, a lean scope of work and a fast completion – and thus remain very cost effective
- As an overall result, the ahead team was able to further strengthen its’ already high standards of Data Privacy and Compliance