Sureway: Empowering Businesses with Automation and Self-Service
Follow Sureway on :
Kjetil Odin Johnsen, CEO
The global nature of law continues to evolve at a constant pace. Organisations, regardless of the size and industry, must stay abreast of these rapid changes not just to ensure sound compliance but also steer ahead of the competition. The birth of the European Union’s General Data Privacy Regulation (GDPR) promised similar game-changing opportunities for businesses while sharply focusing on privacy. In essence, the regulation demands adherence to a set of stringent protocols intended to maintain and protect the privacy of the citizens’ data. Having created ripples in every industry, GDPR was more of an ‘unsettling thought’ for diverse industries, including the public sector, electricity providers, education, and healthcare. The regulation mandates implementing a privacy governance concept for businesses.
In doing so, the primary challenge lies in identifying the processes that include the utilisation of personal data, which further requires creating a detailed record. In essence, this record describes the purpose, type, and legal basis of the personal data and how it is shared and stored, and more. However, creation of such records—the foundation for consents, privacy policies, access of data, and more—manually is a daunting task for organisations operating with spreadsheets. Evidently, businesses stand in need of automation and self-service to both handle GDPR and offer the trust they need from customers and citizens.
This is precisely what Sureway brings to the table.
A Complete Privacy Solution
As a provider of a comprehensive privacy solution that automates much of the resource-intensive work businesses need to do, Sureway specialises in converting the records into structured data. “Records are the heart of privacy. The structured data from the records is reused for all other purposes. We can import Excel-records directly into the tool. The solution is automatically producing what in other tools have to be done manually and is slow. Sureway covers all requirements in GDPR and gives the business a real-time status. It also offers a self-service for customers and citizens to execute their rights,” says Kjetil Odin Johnsen, CEO, Sureway.
Prior to GDPR, Johnsen and his team empowered the clients with a tool for the former privacy regulation in Norway. While GDPR brought in a wave of changes, the team improvised on its checklist tool, CoverYa, and created a feature to organise all information as structured data.
Today, Sureway has evolved as a complete privacy tool, automated for users and self-service for customers and citizens, and fits for all global privacy regulations like GDPR and CCPA.
We are market leaders in Norway, with 100 municipalities, electricity providers and hospital as larger customer groups. The tool fits for all types and sizes of business
With Sureway, clients can create a catalogue of their processes filtered by departments, persons, and other parameters. Sureway also ensures that the complete records help the clients to understand how to use the data. To achieve this, Sureway uses tags for data from the checklists, followed by feeding the data into the search engine for insights and representation. Since privacy data of systems and processes are tagged, Sureway supports a broad spectrum of search queries that generates useful information to the public, management, employees, auditors, and others. Sureway also allows a seamless way to update privacy policies, consents, and rules for the staff. The users can also leverage the complete records for all processes and evaluate if processes align with the regulation. At the core, from the records, the tool creates a list of all systems (data processors). On the data processor page, one can evaluate the data processor and upload all agreements, even schedule when to revise it or the deal.
In order to ensure that businesses are transparent and reliable with regards to privacy, Sureway automatically produces privacy notices from all records/processes. To that end, businesses can publish the privacy notices on web pages, emails and similar settings. “The customers and citizens can easily navigate to find the notices they are looking at and get a detailed description on which and how their privacy data is used. They can even get the notice read by vocal,” adds Johnsen.
While customers and citizens are more interested in getting an insight into how their personal data is used, Sureway significantly reduces the time-consuming process of addressing each insight request. Sureway includes a self-service solution, based on the structured data from the records, where customers and citizens easily can search through data the business have on them and also specifies what needs to be done. From the security perspective, Sureway can create actions and send the notice to the responsible persons, including push messages before any delay.
According to Johnsen, the winning differentiator of Sureway is the automation and self-service technology it leverages to benefits the users. “We also have a library of pre-filled records, which can be easily adjusted by different clients to reach faster to the next phase of their GDPR projects,” he informs. With Sureway, businesses can focus on using advisers to help them with the difficult privacy questions like consent, who and how and with what legal basis they are sharing the privacy data with, instead of hiring a high-paid advisor to fill in records and work manually.
Johnsen goes onto mention that the uniqueness of Sureway also stems from its team of 12 members, along with its supreme consultancy and lawyer partners. “We are market leaders in Norway, with 100 municipalities, electricity providers and hospital as larger customer groups. The tool fits for all types and sizes of business,” he extols.
That not all; the tool has also empowered electricity providers, helping them with records, e-learning, and the DPIA. Besides, the company has contributed to project groups and training. In days to come, Sureway plans to expand its footprint to Europe and the US. Along with this, the company is ready to collaborate with organisations looking for an automated and self-service privacy tool. “We are ready to work with partners across the globe as we can deliver our services in German, Spanish, French and many other languages. We already have Lithuanian version along with our partners in Vilnius,” says Johnsen.