Connexica has developed CXAIR, a tailored data platform that provides data discovery, management, and analytics capabilities. CXAIR helps organizations attain and maintain compliance with the GDPR by creating a centralized data inventory that identifies personal data, applies metadata tags, and provides recommendations to audit and manage data through an automated and ongoing process. GDPR Data Discovery and Management is Connexica's multi-phase solution to help organizations initially audit and attain compliance with GDPR, and then continuously maintain compliance through automated tools to respond to data rights requests and identify potential data breaches.

1. GDPR Data Discovery and
Management

2. Formed in 2006, we realised that the power of search technology could be
harnessed to build a solution that encompasses business intelligence, data
warehousing, data integration and data entry that scales to billions of records and
can be used by anyone in the organisation.
For a number of years there has been an ongoing challenge across the NHS in
managing data integrity and delivering insightful information in a timely manner -
a problem that has only intensified as the amount of data generated on an annual
basis has increased.
ConnexicaidentifiedthischallengeandhavedevelopedCXAIR,atailor-
made platform that, for the last ten years, has provided significant
benefits to organisations.
Connexica also work with organisations across a broad range of sectors with one
mission: turn smart data discovery into actionable information for everyone.
Who are Connexica?
Who are Connexica?

3. How it Helps
How it helps
GDPR Data Discovery and Management will bring an extra level of automation and
sophistication to your GDPR strategy.
Instead of performing a one-off audit to put a tick in the ‘GDPR’ box, use GDPR Data
Discovery and Management to ensure your organisation attains and maintains
compliance far after the GDPR deadline.

4. Solution Summary
GDPR Data Discovery and Management (DDAM) is a multi-phase solution focused
on helping organisations attain and maintain GDPR compliance. DDAM provides a
‘digital clipboard’ that brings all organisational data into a single data inventory.
This inventory generates recommendations from the data and metadata that
helps users’ direct compliance activities.
Once the audit process has been completed and the organisation’s data is
compliant the inventory continues to refresh and stay up-to-date. This provides
a central ‘living’ information management platform that helps maintain ongoing
compliance, and provides additional value to help users respond to data subject
rights and manage data breaches in an efficient and automated manner.
Solution Summary

5. Solution Summary
DDAM is broken down into three development phases to reflect the GDPR
compliance journey.
• Phase 1 focuses on building the initial data inventory, discovering the location,
type and volume of all personal and sensitive data through deep-dive data
mining, and helping conduct a data audit attain compliance prior to May 25th
2018.
• Phase 2 incorporates a Data Subject Rights Portal to help automate the
process of responding to the various data subject rights, from data subject
access requests to data portability requests (estimated release date: April
2018).
• Phase 3 introduces a data breach management framework to help identify
when a breach has taken place and what data has been affected by that breach
(release date: September 2018).
GDPR is not a one-off exercise and to reflect this Connexica will continue to refine
the DDAM solution well beyond the May 25th GDPR deadline. Through DDAM
organisations can ensure they have the right tools in place to maintain ongoing
compliance effort in as automated a way possible.
Development Phases

6. Solution Features
Use CXAIR’s ‘indexing’ capability to create a central
version of all organisational data – structured,
semi-structured and unstructured.
Living Data Inventory
Tag data as it is loaded into the system with GDPR
related metadata tags, including data owner, data
location and data processes.
GDPR Metadata Tagging
Use smart rules to automatically identify what types
of data are held where, including personal data,
sensitive data and children’s data.
Personal and Sensitive Data
Discovery

7. Solution Features
Flag up data that is out of date and alert individuals
when data needs to be deleted, obfuscated or
archived.
Automated Data Retention
Generate a list of recommended actions to take on
your data to become GDPR compliant, and visualise
the process with the GDPR Health Check Dashboard.
Ongoing Data Audit
walk through the GDPR legislation with the
compliance checklist, creating a central resource
library for policies, processes and procedures.
Organisation Compliance
Checklist

8. Visit w ww.connexica.com
Email i nfo@connexica.com
Call +44(0)1785 246777
info@connexica.com
www.connexica.com