Technology startup 1touch.io launched its data protection and privacy management and control solution born to the growth of privacy regulation globally. Specifically designed to meet the stringent requirements of the General Data Protection Directive, as well as those of HIPAA, PCI DSS, and other regulations, the 1touch.io suite of solutions provides continuously updated visibility into the data flows within an organization, enabling privacy and security stakeholders to locate all personal data, be it known or unknown, structured or unstructured, in motion or at rest.
GDPR sets the guidelines for how global organizations store, process and share personal data collected from organizations established in the EU in order to protect data subject rights. Unfortunately, organizations are increasingly storing personal data in unsecured locations within local and network storage, email, the cloud and other areas of ‘shadow IT.’ This creates security risks and non-compliance with many regulations. Existing data discovery and business process mapping solutions are labor-intensive and non-comprehensive, requiring users to classify every piece of data and track location details, yet providing no insight into network data flows.
1touch.io is a solution that maps the organization’s personal data flow to business processes, outlining how information is being shared within the network and with partners and international organizations. It is also able to auto-classify, i.e. identify and categorize data by type with no user intervention.
“Our mission is to provide organizations with an efficient, simple and inexpensive means of tracking personal data—not just for GDPR, but for all compliance and security purposes,” 1touch.io CEO and co-founder Zak Rubinstein said in a statement. “We are receiving a number of referrals from security resellers and law firms, because our solution helps companies show privacy regulators that they are taking reasonable steps to protect personal data, and much more. It essentially provides significant support for compliance with all privacy rights involving data access, rectification, erasure, processing restrictions, third-party sharing, notification and data portability.”
1touch.io is available as hardware or for installation on a virtual appliance, and works by combining several cutting edge and proprietary technologies and techniques, including:
- Network tapping: Leverages network taps to analyze traffic in a seamless and non-intrusive manner; automatically and perpetually discovers which repositories, assets and applications are holding, processing or sharing personal data.
- Data mapping: Creates neural networks of personal data flow and business processes, outlining which network elements are communicating personal data with each other, how and why.
- Natural language processing: Differentiates between personal data and sensitive personal data.
- Artificial intelligence algorithms: The system self-learns to identify other assets that are storing, processing or sharing personal data based on an automatically generated profile.