Pontus Vision GDPR Open Source IT solution
This is the Pontus Vision GDPR Open Source IT Solution. It is the world’s first open source platform that helps businesses comply with the General Data Protection Regulation (GDPR).
The Pontus Vision GDPR Open Source IT solution can help companies comply with GDPR in three steps:
Enables customers to extract personal information from a variety of different areas. This includes e-mails, MS Office documents, Relational Databases, CRM Systems, and Big Data Lakes.
Enables customers to track the origin of the data, and figure out what is personal data. This includes where the data came from, how to retrieve it, delete it, and update it.
Gives data protection officers a web portal with a single view of the Data. The portal has GDPR Compliance Scores for each of the 12 ICO steps to compliance.
Pontus Vision GDPR Open Source IT Solution is the only one in the market that combines the following features in one product:
All Pontus Vision GDPR software has been open sourced. The UK Government department where the platform was born has very progressive attitudes for using and producing open source software. This gives the customers a clear view of the code, and prevents vendor lock-in.
Our solution does not rely on any cloud vendor-specific technologies. The solution can be deployed on-prem, within any cloud vendor that supports Linux Servers, and even across cloud vendors for extra resiliency.
We have had to get our architecture and design revised by a number of accreditors including reviews from NCSC/GCHQ. This enables customers to be reassured that the platform is as safe as their needs require.
The Pontus Vision GDPR Architecture and design have as few manual steps as possible to enable vast quantities of data to be processed. The solution is able to scale to 100s of billions of records.
Pontus Vision GDPR was designed and built as a modular solution that is capable of taking data from hundreds of different formats. This also includes the ability to create bespoke sources and create a reusable library of components.
Our architecture follows our simple three steps:
This is where IT Operations and Business Analysts help connect to your data sources.
This enables customers to extract personal information from a variety of different areas. This includes e-mails, MS Office documents, Relational Databases, CRM Systems, and Big Data Lakes.
We can also create bespoke connectors for any system that can be accessed by a Java or REST API. We are using a powerful open source flow management infrastructure (Pontus-NiFi) based on the Apache NiFi project; that enables users to convert data from a variety of platforms ready for the Track phase.
This is where data analysts can help keep track of your data.
This enables customers to track the origin of the data, and figure out what is personal data. This includes where the data came from, how to retrieve it, delete it, and update it.
A powerful graph database stores the data in a common format called Person, Object, Location, Event (POLE). We can run either Online Transaction Processing (OLTP), or Online Analytics Processing (OLAP) queries on the data to clean up the application. We use a gremlin Tinkerpop - compliant graph database do front those queries, and store the data into Apache Hbase and index it with Elastic Search.
This is where Data Protection Officers have a web portal with a single view of the Data.
The portal has GDPR Compliance Scores for each of the 12 ICO steps to compliance. It also gives the ability to fulfil data subject access requests automatically or manually. Lastly, it provides data breach analysis (figure out data impact from security breaches).
Each of the 12 ICO steps to compliance has its own area in the web portal. Data protection officers can navigate through the organisation's data in a easy-to-use navigation panel, and quickly get to the bottom of why a business is not compliant in a particular area.