IR is the corporate brand name of Integrated Research Limited (ASX:IRI), a leading global provider of proactive experience management solutions for critical IT infrastructure, payments, and communications ecosystems, and is an organization that follows the United Nations Global Compact principles. At IR, we understand the importance of data protection and privacy, with more than 1,000 organizations in over 75 countries - including some of the world’s largest banks, airlines, and telecommunications companies - relying on IR to provide business critical insights and ensure continuity-critical systems deliver high availability and performance for millions of their customers across the globe. We are committed to high standards of information security, privacy, and transparency. Since we started providing real-time, fault-tolerant management in 1988 for business-critical computer systems and applications running on HP NonStop server technology, our products have stood the test of time. Today IR experience management solutions for payment hubs, unified communications ecosystems, and contact centers are trusted by Fortune 500 companies to keep their business running.
On May 25th, 2018, the European Union General Data Protection Regulation (“GDPR” or “regulation”) becomes enforceable establishing a new framework for handling and protecting personal data. The GDPR is the most significant piece of data protection legislation to date, further strengthening individual data privacy rights and creating a uniform data protection law across Europe.
The regulation applies to the processing of personal data and encompasses all organizations established in the EU, additionally applying to organizations outside the EU that monitor the behavior of EU residents or offer goods or services within the EU. The terms “processing” and “personal data” are each defined broadly: “processing” meaning any operation or set of operations performed on personal data, whether or not by automated means; “personal data” meaning any information relating to an identified or identifiable natural person and can be in any format.
Key GDPR Requirements:
Data protection and data privacy themselves are not new concepts to which organizations like IR must adhere. IR has long been committed to these concepts and the GDPR is an opportunity to build a stronger data protection and data privacy foundation. IR embraces, amongst others, the privacy by design and privacy by default principles of the GDPR. IR is committed to complying with the GDPR by the May 25th, 2018 enforcement date and fully supports the intent of the legislation.
IR is taking proactive steps towards our GDPR commitment. IR ran a program of work which had an internal, cross-functional, global steering committee comprised of senior members and a Certified Information Privacy Professional - Europe, who ensured that IR expanded current data protection and data privacy practices to meet GDPR compliance. Additionally, IR is using the opportunity to continually further enhance internal information security policies and adhere to applicable international standards and industry best practices.
When using Prognosis, our customers can be assured of their ability to comply with their GDPR requirements. As part of IR’s GDPR program, IR engaged NCC Group, a company that is ISO9001 and ISO27001 certified that specializes in privacy and cyber security. NCC Group carried out a data protection impact assessment (“DPIA”) on Prognosis to identify any privacy-related risks and their solutions. The DPIA found that the Prognosis application is “out of the box” configured to meet the requirements of the GDPR. Customers are advised to read the GDPR Attestation from NCC Group and ensure that any bespoke configuration is reviewed.
Furthermore, to assist our customers with categorization and retention of personal data for Advanced Reporting, the next version of Prognosis 11.5 will contain personal data property tags. Historic existing personal data can be queried, identified and tagged. This will assist customers in efficient handling and retention of personal data that is stored outside the Prognosis database.
If you have any questions, you can reach the IR team at firstname.lastname@example.org or contact us at the following address:
Integrated Research Limited
Attn: Commercial Management Team,
Level 9, 100 Pacific Highway,