|Introducing Cordery Breach Navigator
Proven cloud or on premise data breach management process, analysis and advice
|Data breaches are complex business events with far-reaching financial and reputational consequences.
Managing incidents well and making the right decisions on risk and reporting requirements requires a great deal of expertise, discipline and support.
The Cordery Breach Navigator solution provides that expert guidance and support for organisations of all sizes.
Data Protection Officers (DPOs) are tasked with designing and implementing processes that can respond to a dynamic set of risks and instil confidence in senior management. These processes must ensure that, if a breach does occur, the organisation’s customers, stakeholders and reputation will be protected.
DPOs and their teams are required to demonstrate highly specialised expertise and be able to guide decision-makers with clear evidence and rationale. They must ensure that employee awareness and understanding of what constitutes a potential data breach is high and that every incident can be assessed and dispatched confidently and in full compliance with the law.
Breach Navigator is a powerful software tool that combines legal expertise with clever software to help DPOs and their teams deal with potential and actual data breaches in a consistent, informed manner using the very latest best-practice techniques.
|Why Cordery Breach Navigator?
Powered by experience and expertise
Breach Navigator’s decision engine is based on best practice developed over years of working with regulators, compliance teams and law enforcement. It is informed by direct legal advisory engagement on over 60 live cases, enhanced through analysis of over a year’s worth of regulatory findings from the Information Commissioner’s Office in the UK and Data Protection Authorities across Europe.
This legal expertise allows the software to make consistent assessment of risk severity and reporting obligations, and to suggest specific actions and remediation plans that have proven to be effective in cases that share similar attributes.
Access anywhere, integrate with ease
Available either on-premise or as an always on cloud-based SaaS. Highly scalable, Breach Navigator is accessible from any browser including on mobile devices. It is available 24x7x365 since we know breaches happen around the clock.
APIs afford easy integration with existing incident management or GRC platforms, meaning that the singular intelligence and automation provided by Breach Navigator can easily augment and enhance any existing tools and processes.
Breach Navigator is regularly updated to reflect changes to legislation and regulatory decisions. Using a combination of Cordery legal expertise and LexisNexis specialist tools and teams, the Breach Navigator decision engine is designed to adapt to updates in legislation, rulings and best practice.
Process and management aligned
For the data breach management process to be effective, it must be comprehensive and instil confidence that lessons have been shared and learned. Breach Navigator provides a series of dashboards and tools designed to quickly identify trends within an organisation’s incident profile.
Where breaches do occur, DPOs can confidently document and share their response and triage reasoning. Stakeholders can rely on Breach Navigator’s comprehensive breach advice and insight to make the most effective, evidence-based decisions.
|What does Cordery Breach Navigator do?|
|Breach Navigator provides a guided step-by-step process for breach handlers and managers through the following stages.
· Risk assessment
· Reporting requirement assessment
· Action planning
· Remediation plans
· Report Draft
· Investigation stage
· Closing a case
· Analysing incident types and outcomes
|Promotes awareness and notification
Offers a simple interface for any employee to notify an incident security or breach handling team of any potential issue. Can be accessed through simple email, intranet or mobile web forms, or via API (e.g. through and an existing service desk reporting or ticketing system.)
Provides breach handlers with a consistent triage process for any type of potential data privacy event, supported by guidance notes and templates at each stage.
|Records the process and builds the event timeline
Automatically builds a timeline of actions from notification, helping all team members keep track of progress against any regulatory deadlines.
The core decision engines rate risk severity and reporting needs; suggesting appropriate categories for the data team to review and decide upon.
|Recommends actions and remediation plans
The system dynamically recommends immediate actions to ameliorate the situation and longer-term remediation plans based on the type of event; prompting the breach handler to indicate which actions are on-going, complete, planned or not required.
|Prepares the draft report for the DPA
Provides a draft report to be sent to the Data Protection Authority with necessary details of the incident, supported by a clear timeline and details of actions and remediation plans; saving the data team hours in document assembly and giving the DPA confidence that any breach is being dealt with effectively.
|Prepares communication for other stakeholders
Provides communication drafts for other stakeholders such as additional regulators, insurance companies, supply chain partners, media outlets, breach victims, the board, etc.
|Provides a complete audit trail
Shows an audit trail that demonstrates consistent handling of events and a robust approach to risk management, compliance and reporting obligations.
|Helps with recruitment and retention
Give your teams the tools they need to perform well, and they are likely to stay longer. Cordery Breach Navigator provides incident managers with an intuitive interface, expert guidance and a proven approach to dealing with complex issues.
Comprehensive data analytics highlight what types of events are happening where across your organisation and can help to secure, plan and focus resources effectively.
|Eases the burden on regulators
By ensuring that incidents are assessed and reported correctly and by helping to ensure that best practice continues to evolve, we hope to help regulators to be able to focus on just those cases that require their attention.
For more information or to request a demonstration call Cordery on
+44(0)207 118 2700