Entirely Tech

WESTMINSTER TECHNOLOGY NEWS

Friday February 1 2019


SureCloud Helps TGI Fridays Combat Risk and Compliance Challenges


Restaurant chain implements SureClouds applications to help accelerate and manage their compliance and risk strategies



SureCloud Helps TGI Fridays Combat Risk and Compliance Challenges

Restaurant chain TGI Fridays UK has deployed Governance, Risk and Compliance vendor SureCloud’s GDPR suite to centralise and track its data and GDPR compliance, ensuring that the restaurant is equipped to meet GDPR requirements and to efficiently manage, store and analyse data. This solution replaces TGI Fridays’ manual data mapping and processing methods.

When TGI was looking for a solution to streamline its GDPR compliance processes, it approached SureCloud in late 2017, and committed to using the SureCloud GDPR Application Suite in December 2017. This also came at a time when TGI was using a ‘cumbersome’ Excel spreadsheet to produce its annual report and was in the process of conducting a review of its suppliers. These lacked the reporting capabilities that the restaurant needed to fulfil its GDPR requirements.

Its recommendation was the SureCloud GDPR Suite, delivered on the SureCloud platform. SureCloud has enhanced TGI’s ability to manage and provide reports on data subjects. Data can now be stored in a single centralised platform, which provides access for multiple users in TGI. After SureCloud had successfully demonstrated the ability to provide full visibility for management and automation of GDPR processes across the organisation, TGI selected its cloud-based suite of solutions.

The five applications TGI Fridays chose to deploy from the SureCloud GDPR Suite were:


•    GDPR Program Tracker - to enable TGI to map all its disparate data and workflows using intelligent risk-based questions
•    GDPR Management – to provide all mandatory GDPR business-as-usual processes
•    Information Asset Management - to record and maintain the TGI’s entire data inventory
•    Compliance Management for GDPR - to help TGI speed up their process of attaining compliance and on-going real-time risk remediation 
•    Incident Management for GDPR – to meet the GDPR requirement to log, track and notify the ICO of any data breaches, should an incident arise

TGI can now build and maintain information assets in a register, which provides instant reporting and analysis of data subjects. TGI is using Data Privacy Impact Assessments to identify and minimise the privacy risks of new projects, systems or policies. Its Data Risk Management (DRM) solution is recording interactions with people and providing clearer oversight and analysis of its retention policies. Moving forward, TGI is conducting a biannual statistical analysis of its data subjects to identify and measure levels of risk across the business. The solution also facilitates assessments and aggregates the data from TGI Fridays’ suppliers making it easier to grade suppliers and their risks without having to extract the data from multiple different spreadsheets, accelerating the vendor risk assessment process.

Jeremy Dunderdale, IT Manager at TGI Fridays said: “Since 2010 we had used the SureCloud platform for vulnerability testing and when we needed to conduct our third-party risk management assessment, we were working from a cumbersome Excel spreadsheet which we were using to send out annually, and we also had to review our suppliers. We then turned on the third-party risk management assessment module around 18 months ago to start utilising this. We were aware of other features of the GDPR Suite and were conscious that what we needed under GDPR – spreadsheets did not cut it.

“Everything is now brought together in a single location. We grade the system according to low, medium and high risk. It is all in the system meaning we now no longer need to look at 20 to 30 different spreadsheets. It pools the risks out of each individual spreadsheet. It is showing it on an overall platform. That is the benefit and what is nice is that it helps in a way with GDPR to ensure we appoint suppliers who have decent processes in regard to security.”

TGI has put together an updated third-party risk management assessment, which its current and future suppliers who do or aspire to provide IT services for the retailer must undergo and adhere to. TGI prepared a modern slavery questionnaire for over 100 of its suppliers, as part of its commitment to good due diligence and that all its suppliers must meet high standards of IT security and are ISO27001 or another equivalent.

Jeremy Dunderdale added: “Some people still think quantity of data is important not the quality of data. We had over 2 million data subjects before 25th May, but what we are realising now is that it is the quality of data that matters. SureCloud means we can now do more with the data we have such as monitoring retention policies, which is invaluable for us. We are happy to be with SureCloud; they are a good fit and the solution has implemented well into the business.”

 

 



"We are happy to be with SureCloud they are a good fit and the solution has implemented well into the business."
Jeremy Dunderdale, IT Manager








DISCLAIMER: The statements, opinions, views and advice expressed in this article are those of the author/organisation and not of ENTIRELY. This article should represent information correct at the time of publication however whilst every care has been taken to present up-to-date and accurate information, we cannot guarantee that inaccuracies will not occur. ENTIRELY will not be held responsible for any claim, loss, damage or inconvenience caused as a result of any information within this article or any information accessed through this site. The content of any organisations websites which you link to from ENTIRELY are entirely out of the control of ENTIRELY, and you proceed at your own risk. These links are provided purely for your convenience and do not imply any endorsement of or association with any products, services, content, information or materials offered by or accessible to you at the organisations site.






Discover our Industry Magazines
















Discover our UK Regional Magazines


North West Business News, Jobs and Events | Entirely North West UK
East of England Business News, Jobs and Events | Entirely East England UK
Ireland Business News, Jobs and Events | Entirely Ireland
London Business News, Jobs and Events | Entirely London UK
Midlands Business News, Jobs and Events | Entirely Midlands UK
North East Business News, Jobs and Events | Entirely North East UK
Scotland Business News, Jobs and Events | Entirely Scotland
South East Business News, Jobs and Events | Entirely South East UK
South West Business News, Jobs and Events | Entirely South West UK
Wales Business News, Jobs and Events | Entirely Wales
Yorkshire Business News, Jobs and Events | Entirely Yorkshire UK


Marie Sagarzazu

Head of UK at iAdvize


Marie Sagarzazu is Head of UK at iAdvize. She has been with the company for almost three years, joining as Key Account Manager, overseeing brands such as Renault, TUI, Oui.SNCF, Monoprix, Decathlon, Christian Louboutin, Maisons du Monde, Canal Overseas.






Datamere Software Solutions


Datamere Software Solutions is an award-winning development company that offers a complete downstream package for gas suppliers. Established in 1998, Datamere created its market leading Gas Management System which offers a modular approach for portfolios of varying sizes.The company has also created bespoke software solutions for hospitality, healthcare and HR industries and is currently working on the development of GMS V4 and GENUS.






JMC IT


Founded in 1981, JMC IT is an award-winning IT support partner based in Agecroft, Salford.






The Config Team


The Config Team -SAP Logistics and Warehouse Management Specialists - was founded in 1994. With its head consultant office based in Skelmersdale, the successful solutions it has delivered to globally respected names give it a reputation as a leading authority in SAP Logistics implementation.






Kieron James

Entrepreneur


Kieron started his career as a Teacher before moving into the emerging market of web domain names sales in 1999. In 2005, he branched out into telecoms, founding Zimo,which won the industry's Service Provider of the Year Award in 2008. He went on to cofound Nexbridge, wich provides industry-leading telecoms services to communications providers and recently branched out into IP telephony services with the popular WHYPAY conferencing service which offers free conference calls to UK businesses.






RECOMMENDED FOR YOU ON ENTIRELY LONDON