Best GDPR Software Tools and Solutions: 51 Leading Tools & Solutions for GDPR Security, Data Governance, User Consent Management & More

The European Union (EU) General Data Protection Regulation (GDPR) is being touted as “the most important change in data privacy regulation in 20 years.” The GDPR was approved in April 2016 to replace the Data Protection Directive 95/46/EC and will be enforced beginning May 25, 2018. The regulation stipulates that businesses must protect EU citizens’ personal data and privacy for transactions occurring within EU member states. Thus, any company doing business in Europe must be ready to comply with GDPR. Moreover, GDPR rules apply to controllers and processors, so clouds are not exempt from enforcement.

Organizations not in compliance on that date will face hefty fines; a breach can result in an organization being fined up to 40% of their annual global turnover or €20 million, whichever is greater. These maximum fines are assessed for the most serious infractions, such as having insufficient customer consent to process data. The fines also are tiered, so an organization may face a 2% fine, for example, for failing to have their records in order.

The question is, are you prepared to comply with the General Data Protection Regulation requirements? Organizations are scrambling to put systems and processes win place to comply, and they need to consider new standards for protection as the GDPR redefines personal identification information (PII). Keep in mind that you will need to protect a person’s IP address and cookie data just as you do their home address and health data.

GDPR requirements will change the way you process, store, and protect customers’ personal data. You will need solutions for assessing, implementing, and maintaining GDPR compliance, and that’s where our 51 best GDPR software tools and solutions come in. We have included cloud and on-premises solutions, and we have included a few free assessment tools to give you a launching point for GDPR compliance. Our picks are grouped by security tools, assessment, data governance & management tools, and user consent & compliance tools, with tools listed in alphabetical order within each category.

• Security Tools
• Assessment, Data Governance & Management Tools
• User Consent & Compliance Tools

Security Tools

1. The Absolute Platform
@absolutecorp

Absolute gives organizations the ability to see, manage, and secure every endpoint for total visibility and control. The Absolute Platform is a unique endpoint security solution because it is always connected to every endpoint, giving you unsurpassed visibility, insight, and real-time remediation capabilities for stopping breaches at the source. You can be sure that no endpoint will go dark when you use this GDPR software solution.

Key Features:

• Identify and remediate non-compliant data access
• Discover sensitive data and assess the risk exposure
• Embedded in the firmware of more than one billion popular endpoint devices for always-connected visibility and control
• See and control every endpoint, everywhere, even if it is off the network
• See, manage, and secure every Windows and Mac in your deployment with a few clicks regardless of user or location
• Discover and protect at-risk data on endpoints and in the cloud

Cost: Contact for a quote

2. Actiance Platform
@Actiance

Actiance empowers enterprises to utilize collaborative platforms and resolve real-time security, management, and compliance challenges while solving information and data governance challenges, especially relating to GDPR. The Actiance Platform is a unified platform designed for compliance across communications and social channels and gives users insights into what is being captured.

Key Features:

• View more than 80 communications channels
• Have a single point of control for all communications
• Enforce policies globally or granularly
• Context-aware capture with the capability of preserving conversational context within or across communication channels
• Uncompromised data protection
• Leverages the power of Vantage, Socialite, and Alcatraz to deliver a comprehensive compliance solution to users

Cost: Contact for a quote

3. AlienVault Unified Security Management (USM)
@alienvault

AlienVault is the leading provider of unified security management and community-powered threat intelligence required to detect and act on the advanced threats of today. Users are able to simplify GDPR compliance monitoring with AlienVault’s Unified Security Management (USM) solution, which delivers a complete set of essential security capabilities. AlienVault USM integrates multiple capabilities into a unified solution that gives you visibility into your complete security posture and simplifies GDPR compliance.

Key Features:

• Helps you detect data breaches, monitor data security, and document your compliance readiness
• Log retention and management for forensic investigation
• Detect breaches quickly with network intrusion detection (NIDS), host intrusion detection (HIDS), and cloud intrusion detection (CIDS)
• Supports a range of GDPR compliance functions by integrating asset discovery, vulnerability scanning, behavioral monitoring, intrusion detection, and security information and event management (SIEM) and log management into one unified solution

Cost: Contact for a quote

4. DB Networks DBN-6300
@_DB_Networks

DB Networks delivers artificial intelligence based database security for data base discovery, insider threat protection, and deep SQL analysis. Their DBN-6300 solution delivers insights and situational awareness of your database infrastructure so you have a real-time assessment of it to immediately identify attacks and compromised credentials.

Key Features:

• Use insights to establish a defense for your database infrastructure
• Analyze database traffic to uncover where personal and proprietary information flows, identify undocumented databases, identify traffic to and from restricted segments, and identify advanced database attacks and the use of compromised credentials
• Easily set up DBN-6300 and deploy it without changing any existing applications, databases, or cybersecurity systems
• Complies with GDPR continuous monitoring requirements
• Uses highly accurate machine learning and behavioral analysis

Cost: Contact for a quote

5. Egnyte Protect
@Egnyte

Egnyte transforms businesses via smarter content that allows organizations to connect, protect, and unlock value from all of their content. Egnyte Protect is a tool for smart content governance that serves as a GDPR solution for total data security using encryption to mitigate the risks associated with processing sensitive data.

Key Features:

• Easily find, sort, and secure customers’ personal information, wherever their data is stored
• Enhanced digital collaboration without sacrificing security or control
• Real-time alerts show administrators when files are accessed without authorization and help you report breaches within the 72-hour DGPR notification period
• Comprehensive GDPR compliance as Egnyte recognizes personal data identifiers and keeps software, tools, servers, and apps updated to support continuous GDPR compliance
• Categorize personal information regardless of its location to easily locate it and then process specific data as requested by an EU resident

Cost: Contact for a quote

6. EventTracker
@LogTalk

EventTracker is a leading SIEM and log management solution. This GDPR software solution helps users protect consumer financial information, demonstrate compliance, and increase operational efficiency. With EventTracker, you can collect and store logs, monitor your environment, be alerted about threats, and provide security and compliance reports.

Key Features:

• Receive alerts whenever personally identifiable information (PII) is received, handled, or shared in an unstructured file
• Delivers a comprehensive audit trail documenting and tracing authorized and unauthorized access to confidential data
• Receive alerts at the first indication of suspicious behavior in your network that could indicate a breach
• Get alerts when sensitive data leaves the organization
• Apply protection to email, documents, and other file formats to ensure safe sharing of sensitive information using any type of media

Cost: FREE trial available for 30 days; Contact for a quote

7. Forcepoint DLP
@Forcepointsec

Forcepoint is transforming cybersecurity by focusing on people’s intentions as they interact with critical data everywhere it resides. Forcepoint DLP gives users the visibility and data controls you need to secure your critical data and comply with GDPR.

Key Features:

• Incident risk ranking based on behavioral analytics and machine learning for focusing response teams on areas of greatest risk
• Integrated incident workflow enables you to resolve DLP incidents more quickly with review and remediation via email or directly within the Forcepoint Security Manager
• Predefined policy templates for industries and regulations including GDPR to assist you in detecting and protecting PII
• Advanced detection for uncovering critical data inside images via optical character recognition, cumulative data transmission activity over time-to-data leakage fragments, and indicators of compromise leading to data theft

Cost: Contact for a quote

8. Informatica Secure@Source
@Informatica

Informatica, a leader in enterprise cloud data management, “helps data-driven leaders unleash the power of data to drive their intelligent disruption.” They also offer Secure@Source, a GDPR solution that enables users to locate, analyze, and remediate the risk of sensitive data while monitoring data access and movement for suspicious activity.

Key Features:

• Delivers immediate access to the location, volume, and risk of personal data across your company through visualizations and mapping of regulated data
• Gain actionable data discovery and classification, risk scoring, behavioral analytics, and automated protection in a single solution for all types of data
• Enterprise visibility of sensitive data and risks
• Intelligent sensitive-data policies
• Orchestrate data security and access controls
• Risk analysis, sensitive data proliferation, dashboards, visualizations, reports, alerts, and more

Cost: Contact for a quote

9. Integris
@Integrisio

Integris Software is a data risk intelligence startup that enables companies to handle data risk in an automated, proactive, and continuous way. Integris is ready to help you gain visibility into your data so you can manage notice, consent, rights request, and more to comply with GDPR.

Key Features:

• Know exactly which people, records, and data may be impacted should a breach occur
• Understand risk through the data lifecycle based on your privacy policies
• Visualize GDPR requirements on your data
• Design privacy policies using a graphical policy editor
• Set policies that reflect your business needs
• Apply contractual obligations and binding corporate rules to your data

Cost: Contact for a quote

10. ISMS.online
@isms_online

From Alliantist Ltd., ISMS.online is a SaaS solution for managing InfoSec, cyber, data protection, GDPR, and ISO. Their GDPR Standalone solution helps uses prepare for and practice GDPR requirements from one secure place in the cloud.

Key Features:

• Frameworks for GDPR policy management and governance mapped to the ISO 27001 framework as required
• Personal data inventory and records processing tracker
• Full collaboration functionality
• Privacy impact assessments
• Risk management tools
• Internal and external audit management

Cost: Contact for a quote

11. Mimecast Email Security Gateway
@Mimecast

Mimecast makes email management safer for business email security, email archiving, and email continuity. Their Email Security Gateway solution is ideal for GDPR risk management because it wards against impersonation attacks, weaponized attachments, and malicious URLs. The tool also provides multi-layered email security and content controls.

Key Features:

• Comprehensive front-line defense for the personal data customers entrust you with via email
• Cloud archiving capabilities offer fine-grained control to respond quickly to opt-out requests
• No limits on concurrent searches or number of mailboxes per search
• Set policies centrally so you don’t risk compliance or policy violations whether in an on-premises, cloud, or hybrid email environment

Cost: Contact for a quote

12. Neupart Secure GDPR
@neupart

Neupart is a leading provider of information security management solutions. They specialize in helping enterprises manage complex regulatory mandates and operational risk. They also offer their Secure GDPR solution, a tool that assists companies in establishing compliant processes.

Key Features:

• Ensure compliance with full control over documents, including knowing which are available and which have been read by employees, suppliers, and partners
• Content and templates so you do not have to start from scratch
• Registration of data processing activities
• Data protection impact assessment (DPIA)
• Data protection officer dashboard with a clear overview of your key areas in compliance

Cost: Contact for a quote

13. Proteus GDPReady
@Proteus_Cyber

ProteusCyber are specialists in integrated risk management. Their GDPReady solution fully supports the GDPR process with built-in Regulation (EU) 2016/679 articles built-in. Data protection offers also make use of ProteusCyber’s ready-made suite of tools to model business processes and define which sensitive data exists and where.

Key Features:

• Comprehensive view of where personal identifiable data resides in your organization
• Scored readiness evaluation and graphical illustration of compliance gaps
• Compliance roadmap with recommendations for immediate action
• Insights support building a robust data protection framework
• Fast and easy breach reporting
• Vendor risk management for audits

Cost:

• ProteusGDPReady Basic: £1,195/year – 1 user, 1 site, 1 process/data mapping survey, 1 company-wide GDPR survey, and 1 GDPR compliance status report
• ProteusGDPReady SME: £11,995/year – 5 DPO users, 5 sites, 5 vendors, 25 business processes, process/data mapping survey, data definition, process definition, risk assessment, internal reporting, action planning, breach reporting, and vendor assessments
• ProteusGDPReady Enterprise: Contact for a quote – Unlimited DPO users, unlimited survey users, unlimited business processes, unlimited sites, integrated project plan to guide you through the process, privacy impact assessments (PIAs/DPIAs), process/data mapping register, business process modeling, data privacy risk assessment, reporting (e.g. Article 30), project and task planning, subject access request handling, breach motivation, GDPR risk assessment, easy bulk data import, GDPR awareness training built in, and multilingual

14. Qualys
@qualys

A pioneer of cloud security and compliance solutions, Qualys is a leading provider of them. Their solutions now help organizations prepare for GDPR compliance by making it possible for them to know and control their data, assets, and suppliers.

Key Features:

• Asset inventory delivers the visibility you need to keep assets secure
• Threat protection for prioritizing and remediating vulnerabilities
• Vulnerability management protects you against attacks wherever and whenever they appear
• Policy compliance to help your customers’ data stay secure while you save time and money and feel confident for audits
• Security assessment questionnaire streamlines vendor and IT risk audits

Cost: FREE trial available; Contact for a quote

15. Quest Software
@Quest

Quest builds community-driven software solutions to help users spend less time on IT administration and more time on business innovation. Their software improves the security of organizations’ Microsoft environments and endpoint devices while strengthening data protection safeguards.

Key Features:

• Continually assess, monitor, and control your environment to make your organization more productive, secure, and GDPR-compliant
• Ensure users have appropriate access to unstructured data to reduce the risk of data breaches
• Scan your entire network to identify connected devices and provide a detailed inventory of hardware and software
• Real-time auditing and forensics on suspicious activity or unauthorized access to files or systems containing personal data
• Archive event log data with long-term retention and compression for compliance

Cost: Contact for a quote

16. SecurePrivacy
@SecurePrivacyAI

SecurePrivacy is a solution for making your website GDPR compliant. This tool helps users identify and understand the data you have on your website to comply with GDPR requirements.

Key Features:

• Perform website audit scans and discover your legal risk profile: scan more than 1,000 plugins and solutions
• Works across most websites around the globe
• Communicate accurate privacy information to get consent easily
• Empower visitors to easily withdraw consent with one click using your Trust Badge
• View all consents and visitors to your website

Cost: FREE trial available for 14 days

• Basic: €9/month paid monthly or €90/year paid annually – 500 unique visitors per month
• Standard: €49/month paid monthly or €490/year paid annually – 4,000 unique visitors per month
• Professional: €225/month paid monthly or €2,250/year paid annually – 25,000 unique visitors per month
• Premium: €630/month paid monthly or €6,300/year paid annually – 100,000 unique visitors per month

17. Sophos Central
@Sophos

Sophos makes security simple. Specifically, Sophos Central makes GDPR compliance simple by delivering a unified console that houses all of your Sophos solutions for meeting the regulations.

Key Features:

• Stop the leading causes of data loss by keeping your devices and data secure if it is lost or stolen
• Stop malware and ransomware
• Stop threats and attacks at the door and automatically encrypt or block sensitive data in email
• Prevent human error by securing files even when they leave your network or devices

Cost: Contact for a quote

18. SureCloud GDPR Compliance Suite
@SureCloud

SureCloud is a security, risk, and compliance cloud service provider delivering the best in GRC, security and risk assurance applications, and security services. Their GDPR Compliance Suite is a cloud-based applications suite featuring six applications to make it possible for you to simplify and automate your efforts to gain and maintain GDPR compliance.

Key Features:

• Plan-do-check project roadmap straight out of the box
• Single source for project management, automation, collaboration, tracking, and reporting
• Auditor-friendly platform for demonstrating GDPR compliance and your ongoing commitment to it

Cost: Contact for a quote

19. TITUS Illuminate
@TITUS

TITUS offers enterprise information protection so that users can classify, protect, and confidently unstructured information on the desktop and mobile devices and in the cloud. Their Illuminate solution makes it possible to discover, classify, protect, and analyze data at rest, making it a useful tool for GDPR compliance.

Key Features:

• Make users part of your data protection compliance program to make it even stronger
• Identify personal data stored in email and documents in order to apply the appropriate controls to protect it
• Supports automated, system-suggested, and user-driven classification
• Intuitive workflow built into your desktop and mobile applications
• Automatically identify the sensitive nature of data and the business value of data to know exactly what you have and how to protect it

Cost: FREE trial available; Contact for a quote

20. Varonis GDPR Patterns
@varonis

A leading provider of software solutions for protecting data from insider threats and cyberattacks, Varonis also offers software for GDPR compliance. Their solution enables you to automatically discover and classify data. Specifically, GDPR Patterns gives you the power to discover regulated personal data so you can generate reports on GDPR applicable data including permissions, open access, and stale data.

Key Features:

• Meet GDPR head-on with patterns and classifications while building security policy to monitor and alert on GDPR affected data
• Goes beyond Regular Expressions and includes keywords, proximity, negative keywords, and exclusive validation algorithms to automatically identify GDPR data
• More than 250 exclusive patterns to identify and classify GDPR eligible data for all 28 EU countries
• Automatically identify both country-specific and general patterns including National Identification Numbers, Vehicle ID information, telephone numbers, banking data, credit card numbers, IP addresses, and more

Cost: Contact for a quote

Assessment, Data Governance & Management Tools

21. Collibra
@collibra

Collibra is a cross-organizational data governance platform that delivers transparency and allows you to automate the data management process. It breaks down traditional data silos and opens up organizational data, making data easy to find and allowing users to collaborate on it, and easily understand its meaning. Most importantly, this platform allows users to trust their data, which helps organizations gain competitive advantage. This data governance solution helps to ensure that you are GDPR compliant.

Key Features:

• Creates a centralized database of personal data information and items
• Allows governance accountability and workflow for personal data ownership and definition
• Provides detailed data sharing agreements showing how the organization shares personal data internally as well as externally
• Easily access data anywhere and anytime

Cost: Contact for a quote

22. AvePoint Privacy Impact Assessment (APIA) System
@PrivacyPros

The International Association of Privacy Professionals (IAPP) is the world’s largest information privacy organization. Their AvePoint Privacy Impact Assessment (APIA) System integrates an advanced GDPR Detailed Assessment developed in conjunction with Microsoft. This tool helps users assess progress with GDPR compliance so you know where you are in terms of readiness.

Key Features:

• Newly integrated reporting and trend analysis
• Track your progress and improvements over time
• Provides categorized recommendations to help you close existing gaps in terms of people, processes, or technology
• Automate the process of evaluating, assessing, and reporting

Cost: FREE

23. BigID
@bigidsecure

BigID software assists companies in securing customer data and satisfying privacy regulations like GDPR. When you want to automate your efforts to satisfy GDPR requirements, turn to BigID and for a centralized view into personal and private data across data repositories.

Key Features:

• Data minimization through duplicate discovery and correlation
• Consent management to demonstrate that you are enforcing customer content regulations for personal data collection
• Maintain compliance with breach notification windows
• Enable right-to-be-forgotten capabilities to satisfy customer data portability support

Cost: Contact for a quote

24. BMC Discovery for Multi-Cloud
@BMCSoftware

A global leader in software solutions, BMC Software gives users a competitive advantage by helping IT transform traditional businesses into digital enterprises. For GDPR compliance, BMC offers Discovery for Multi-Cloud. This solution automates asset discovery and application dependency mapping to give users a complete view of data center assets, multi-cloud services, and their relationships.

Key Features:

• Fast, accurate, secure cloud and on-premises asset visibility
• Manage compliance across a multi-cloud infrastructure
• Gain visibility into all your data center, public cloud, and private cloud assets and their relationships with BMC
• Manage and validate unstructured data automatically to ensure data is intact and in compliance with GDPR
• Automatically link vulnerabilities to identified patches and create a plan for deploying countermeasures with one click

Cost: FREE trial available; Contact for a quote

25. BWise GDPR Compliance Solution
@bwisegrc

Nasdaq BWise is a global leader in governance, risk, and compliance (GRC) management software. Their GDPR Compliance Solution provides support for all aspects of the regulation, including a holistic view, maximum control, streamlined compliance, and configurability to keep pace with business changes.

Key Features:

• Collect, access, transfer, and share data assets and safeguard data privacy and data protection
• Integrate with external CMDBs for a single point of access and fewer efforts required to maintain data
• Use the Data Protection Impact Assessment (DPIA) to determine whether new assets or internal projects comply
• Workflows ensure policies comply with GDPR
• Record incidents and then notify internal stakeholders within 72 hours

Cost: Contact for a quote

26. CA Data Content Discovery
@CAinc

CA Technologies helps “customers succeed in a future where every business – from apparel to energy – is being rewritten by software.” Their Data Content Discovery solution helps users meet GDPR compliance requirements by assisting you in building data-centric security strategies by recognizing data exposure risks via the mainstream data infrastructure. When you can discover where your data is located, you can classify it based on sensitivity level and provide comprehensive reporting.

Key Features:

• Protect mission essential data and mitigate exposure risks
• Gain critical insight into potential data exposure
• Classify data and prove to auditors you have controls in place for identifying and reporting on sensitive data
• Remain in total control of your mainframe data

Cost: Contact for a quote

27. Commvault
@Commvault

Commvault helps users know, move, manage, and protect and recover while gaining value from your data and becoming data experts. Their software helps you lay the foundation for GDPR compliance by consolidating data protection, compliance, and discovery operations in a unified solution that delivers visibility into all the personal data you store in the cloud or on-premises.

Key Features:

• Integrates backup, recovery, and archiving to create a single searchable pool of your structured and unstructured data
• Simplifies information governance
• Gain visibility and control to meet GDPR requirements
• Identify the presence of personal data in all data locations, automate special handling of information with standard data policies, support the export and erasure of personal data from all data sources, and more

Cost: Contact for a quote

28. Conformio

Conformio has been helping businesses meet ISO compliance standards and other regulations for quite some time. Some companies are turning to ISO platforms to comply with the GDPR requirements, and Conformio would be a wise choice because it streamlines your compliance efforts into a single tool that manages documents, projects, communication, and more.

Key Features:

• Available any time, anywhere, as an online tool
• Centralized hub for data, people, and activities is searchable, accessible, and secure for all team members contributing to projects
• Specific step-by-step guide for GDPR to support users every step of the way with useful advice
• Set up document workflows, co-develop policies and procedures, record breaches, ensure timely responses, perform risk assessments, record non-conformities, organize tasks and people and more in one place, and more

Cost:

• Free Plan: FREE – 5 users, 1 GB of storage, all modules available but some have limited availability
• Basic: $39/month billed annually or $49/month billed monthly – 10 users, 10 GB of storage, all modules available without limitations, and unlimited email support
• Startup: $79/month billed annually or $99/month billed monthly – 20 users, 20 GB of storage, all modules available without limitations, 1 documentation toolkit of your choice, unlimited email support, 1 hour of one-on-one expert support, and expert review of 1 completed document
• Advanced: $129/month billed annually or $149/month billed monthly – 40 users, 40 GB of storage, and all Startup plan features plus 5 hours of one-on-one support (a series of online meetings with an expert), and expert review of 5 completed documents
• Professional: $199/month billed annually or $229/month billed monthly – 80 users, 80 GB of storage, and all Advanced plan features plus 15 hours of one-on-one support, expert review of 15 completed documents, and a pre-audit check

29. Connexica CXAIR
@ConnexicaUK

Connexica provides self-service solutions for modern data challenges. Their data discovery platform, CXAIR, is a solution for GDPR compliance because it simplifies data management, analysis, and reporting for your entire organization.

Key Features:

• Proprietary indexing capability to create a central version of all organizational data for a living data inventory
• GDPR metadata tagging enables you to tag data as it is loaded into the system
• Smart rules for automatically identifying data types, including personal data and sensitive data and children’s data and for pinpointing data location
• Automated data retention
• GDPR Health Check Dashboard

Cost: Contact for a quote

30. DATUM Data Governance for GDPR Compliance
@datumstrategy

DATUM helps large corporations easily establish a repeatable data governance framework focusing on the critical data. Their GDPR solution assists you in creating transparent, demonstrable best practices and then put them to work to define exactly which data is classifiable as GDPR personal information.

Key Features:

• Discover where data lives, who uses it, and how it is used
• Connect information about your data to data governance processes
• Collaborate with stakeholders across the organization
• Supports engagement with regulators
• Link GDPR-related processes, rules, standards, data, and metrics to your company’s compliance goals and objectives

Cost: Contact for a quote

31. Flowz

Flowz was developed by a team of information governance experts from Apria who worked on compliance for a decade with the NHS. They extended their original Information Asset Manager (IAM) product to comply with GDPR requirements.

Key Features:

• Upgraded to the latest Microsoft tools to improve the interface, making it extremely intuitive and user-friendly
• Provides a risk score against the information and flows within your organization to assist your GDPR compliance efforts
• Provides a stream for you to record all the information assets you control, the internal owners of the data, the categories of data subjects and data collected, the purposes for processing, and the geographical location in which the data is held

Cost: Contact for a quote

32. GDPRiS
@GDPRinSchools

A finalist for the BETT Awards 2018, GDPR in Schools (GDPRiS) is a school-centric solution that is highly secure. This cloud-based tool reflects existing processes and the ways in which schools work while proactively helping them meet GDPR requirements.

Key Features:

• Prompts the use of SAQs to guide all school staff to protect data
• Streamlines GDPR data compliance
• Manages third-party suppliers that process data
• Streamlines SARs and data breach reporting

Cost: Contact for a quote

33. Index Engines
@IndexEngines

Index Engines is enterprise software that helps organizations around the world find, organize, and govern corporate data assets. Their GDPR solution offers extensive search and management capabilities to help users uncover all personal data under management with precision while implementing powerful indexing technology.

Key Features:

• Supports all classes of data, from primary storage to legacy backup data
• Powerful, efficient metadata-level indexing technology that indexes at unprecedented speeds
• Powerful, comprehensive search technology resides at the core of Index Engines
• Integrated disposition options for easily migrating, securing, archiving, and defensibly deleting content based on data policies
• report on file activity logs to determine who accesses sensitive content

Cost: Contact for a quote

34. iServer GDPR Accelerator
@OrbusSoftware

Orbus Software develops solutions for business and IT transformation. Their iServer GDPR Accelerator is a comprehensive toolkit offering support and guidance to organizations working to achieve compliance with the regulations. It also features a methodology based on the twelve-step guide offered by the UK’s Information Commissioner’s Office.

Key Features:

• Best practice tools
• Templates for each of the four main organizational streams: legal and compliance, data, technology, and security and privacy
• Drive extra value by rationalizing data and process landscapes to create transparency, reduce risk, and streamline operations
• Dashboards for the Data Privacy Officer in addition to other roles
• Build-in meta-model extension to existing frameworks and notations including TOGAF/ArchiMate and BPMN
• Predefined set of attributes to capture GDPR information

Cost: Contact for a quote

35. LogicManager
@LogicManager

LogicManager is a leader in enterprise risk management solutions. Their integrated risk and compliance management software is one GDPR solution that enables users to scope, prioritize, track, and report on critical information across your organization.

Key Features:

• Puts data in a common risk taxonomy to help you understand how the information is connected
• Gives you a transparent view into the areas of your business that are responsible for collecting various types of data
• Sends automated notifications and tasks to help you better understand data collection, maintaining governance over the collection process, and determine the priority of the data your organization collects
• Intuitive, insightful risk management dashboards help you determine how your risk levels change

Cost: Contact for a quote

36. MetricStream M7 GRC Platform
@MetricStream

MetricStream is a market leader in enterprise-wide governance, risk, and compliance apps and solutions. Their M7 GRC Platform is a GDPR solution that takes an integrated, automated approach to data protection compliance and assurance as required by the new regulations.

Key Features:

• A unified system for managing multiple GDPR requirements including data protection impact assessments, data protection audits, risk management, and control testing
• Supports a risk-based approach to GDPR compliance and helps data protection officers build a robust data protection and governance framework
• Gain a birds-eye view of personal data assets mapped to risks, controls, and processes
• Data protection assurance and risk management teams can conduct risk assessments, define and manage controls, perform audits, and resolve issues
• Gain comprehensive, real-time visibility into the status of GDPR assurance via powerful reports and dashboards

Cost: Contact for a quote

37. Micro Focus Security and Information Management & Governance Software
@MicroFocusSW

A global software company, Micro Focus has 40 years of experience in delivering and supporting enterprise software solutions to help customers innovate quickly with lower risk. Their Security and Information Management & Governance software helps users gain information insight, automate policy enforcement, and protect information from creation to disposition in accordance with GDPR.

Key Features:

• Underpinned by rich analytics to help you streamline GDPR compliance efforts
• Automatically identifies the most critical and sensitive data and protects it in use, in transit, and at rest
• Gain deep information insight to leverage your data with confidence, grow customer trust, and comply with GDPR

Cost: Contact for a quote

38. Microsoft Compliance Manager
@Microsoft

Microsoft Compliance Manager is a new solution designed to help users manage regulation and compliance processes. With Compliance Manager, you connect technology solutions with regulatory requirements. Get recommended actions and a control management tool to improve data protection and implement controls across teams seamlessly.

Key Features:

• Perform real-time risk assessment to better prepare you for auditing
• Dashboard summarizes Microsoft’s and your organization’s control implementation progress for Office 365 across GDPR and ISO
• Actionable insights for improving data protection and compliance posture
• Control management and audit-ready reporting tools for streamlining compliance workflow

Cost: FREE for organizations with a paid or trial subscription for Microsoft cloud services

39. Microsoft GDPR Assessment Tool
@Microsoft

The Microsoft GDPR Assessment Tool is an online self-evaluation tool. Microsoft also offers its Detailed GPR Assessment, and use of this tool is intended for Microsoft partners to assist customers in reviewing their overall readiness levels for complying with the regulations.

Key Features:

• Microsoft GDPR Assessment Tool is a tool intended for a quick, online self-evaluation
• Microsoft Detailed GDPR Assessment Tool is accompanied by supporting materials to assist Microsoft partners in facilitating customer assessments
• Microsoft provides GDPR-related assurances in their contractual commitments

Cost: FREE

40. Neo4j Graph Platform
@neo4j

The Neo4j Graph Platform is a leading platform for connected data. Their graph solution helps companies navigate GDPR requirements by gaining full visibility into their data and the connections between it.

Key Features:

• Powerful visualization tools for modeling and tracking movement of sensitive data through all systems
• Provide easy, clear answers about data to regulators, data protection offers, and individual consumers
• Connections-first approach to applications and analytics across the enterprise
• Optimized to map, analyze, store, and traverse networks of connected data to reveal contexts and hidden relationships
• Intuitively maps data points and the connections between them

Cost: Contact for a quote

41. NGDATA
@ngdata_com

NGDATA’s customer data platform, Lily™, captures data from all channels to provide enterprises with real-time insights and drive the omni-channel customer experience. Lily supports data controllers and data processors and guarantees customer data privacy by empowering companies to manage customer information from one place.

Key Features:

• Easily turn information on and off
• Use data properly based on customer consent
• Customer DNA
• Advanced, purpose-scoped execution of consent registration
• Advanced data management and security
• Data monitoring and audit support

Cost: Contact for a quote

42. OneTrust Privacy Management Software Platform
@OneTrust

OneTrust is a comprehensive privacy management technology platform designed to help organizations demonstrate accountability and compliance with GDRP and other global regulations. Their privacy management software platform automates privacy impact assessments and data mapping, identifies privacy risks, and enforces risk management activities.

Key Features:

• Integrated platform
• Leverages your existing data map and inventory to meet GDPR Article 30 obligations
• Predefined, customizable templates based on unique business requirements
• Multiple options for populating data flow inventory including questionnaires, scanning technology, in-person workshops, and bulk imports
• Automatically generate searchable inventory and visual data maps based on your underlying data inventory
• Includes PIA module to capture data flows from new projects

Cost: FREE trials available

• Assessment Automation: Fixed monthly subscriptions start at $500
• Data Inventory & Mapping: Fixed monthly subscriptions start at $500
• Cookie Compliance: Starts at $30/additional website
• Data Subject Access Request (DSAR) Portal: Fixed monthly subscriptions start at $150

43. Opus Global’s Third Party GDPR Compliance Solution
@opus

Opus is a leading provider of compliance and risk management solutions combining flexible SaaS platforms with data solutions. Opus offers its Third Party GDPR Compliance solution because the company recognizes the challenges companies face in documenting personal data when outsourcing is so common.

Key Features:

• Easily identify the third parties with whom you share customers’ personal data
• Scope the appropriate controls for relationships based on the data shared and regulatory guidance
• Maps responses to GDPR questionnaires directly to specific controls for faster, easier assessment
• Automatically documents the effectiveness of controls, tracks agreed-upon remediations, and performs continual compliance review

Cost: Contact for a quote

44. Quidgest
@Quidgest

Quidgest, a multinational technology company, was a pioneer of automated software. Today, they help companies successfully manage GDPR compliance with their solution that allows the structural organization of data with a control platform for meeting technical and compliance requirements associated with the regulations.

Key Features:

• Two interfaces: one for data protection management for the data protection officer and one for data subject portal
• Access control mechanisms and the definition of privileges for guaranteeing the security of the system and its contents
• Export statistical data and automatically produce management indicators as the integration of information enables the automatic production of activity reports

Cost: Contact for a quote

45. Seal Software Version 5.3
@SealSoftware

Seal Software offers a leading contract discovery and analytics platform to help users find contracts, extract clauses, render for easy review, and populate corporate repositories with contract data. Their Version 5.3 is the newest release of this software, and it is a solution for GDPR compliance because it can discover contracts across the network and extract the data for compliance with the regulations.

Key Features:

• Ensure contracts include clear definitions of data breaches and specific obligations to comply with GDPR
• Know the location of all PII across your organization
• Confirm contractual agreements with PII processors and other vendors that come into contact with PII have appropriate language defining the nature and scope of their access to it

Cost: Contact for a quote

46. Snow GDPR Risk Assessment
@SnowSoftware

Snow Software prevents organizations from paying too much for the software they use by optimizing licensing and minimizing compliance risk. Their Snow GDPR Risk Assessment helps users understand and mitigate GDPR risk with complete asset visibility.

Key Features:

• Gain complete visibility into all devices, users, and applications whether in the cloud, on-premises, or on mobile
• GDPR-specific risk assessment for building an effective compliance plan and response
• Automated discovery provides a detailed account of which users have access to which applications and cloud services and how they use them
• Out-of-the-box reports
• Identify who is responsible for a data breach and enable preventive measures when applicable

Cost: Contact for a quote

User Consent & Compliance Tools

47. ConsentCheq GDPR Compliance Development Kit (CDK)
@PrivacyCheq

PrivacyCheq leads the industry in innovative technology solutions covering the intersection of privacy and mobile devices. Their ConsentCheq GDPR Compliance Development Kit (CDK) is a solution for user consent and compliance. Specifically, it is a fully integrated set of software tools, cloud API, and dashboard services with model compliance forms to give your enterprise a solution for quickly building, testing, and optimizing processes for GDPR compliance.

Key Features:

• Interoperable tools for rapidly prototyping and field testing different user flows to discover the optimal flow for user experience and retention
• Serves as a gap solution for large enterprises planning to build and deploy in-house GDPR solutions before enforcement begins
• Scalable to handle hundreds of millions of transactions each day

Cost: FREE initial ConsentCheq CDK license for 12 months of unlimited access to ConsentCheq cloud services

48. Consentua
@Consentua

Consentua is a consent management tool that aids organizations in achieving data protection compliance for regulations such as GDPR. Utilize the easy-to-use APIs to deploy this tool within your own applications to capture user consent. Consentua also gives people control over how their personal data is used.

Key Features:

• Binary, linear, grouped linear, grouped binary, and grouped mixed consents
• Users have the ability to see which data is being used, and they can revoke consent
• Unique user interface clearly displays the exchange between the processor’s use of data and what the person can expect as a result
• Data processors see who can access services and to which interactions they have consented

Cost: Contact for a quote

49. Evidon Universal Consent Platform
@evidon

Evidon, a leading consent and monitoring provider, focuses on simplifying digital governance. Their Universal Consent Platform is a patented transparency and consent solution for simplifying GDPR and other privacy regulations. Evidon’s team worked with data protection supervisors, privacy leaders, policymakers, technologists, and marketers to develop the platform using their existing patented technology to create this unified solution for meeting GDPR requirements.

Key Features:

• Single-tag implementation across desktop, mobile, apps, and geographies with language customizations for more than 50 languages
• 1st-party consent controls via integrations with in-house solutions and with leading enterprise partners
• 3rd-party consent controls utilize Evidon’s patented monitoring technology to automatically populate your website’s full list of tracking technologies into your consent tool
• Digital profiling assessments to assess your site’s tracking technologies based on their level of intrusiveness to users

Cost: Contact for a quote

50. PrivacyPerfect
@PrivacyPerfect

Privacy Perfect is a “one-stop GDPR compliance tool.” In fact, it includes assessment, processing, breaches, dashboards, tools especially designed for chief privacy officers, reports, legal processing grounds, and graphical overviews.

Key Features:

• Provides for a natural flow between data protection impact assessments, processing activities including transfers, and data breaches including breach notifications to supervising authorities and data subjects, as required by GDPR
• Enter and assess relevant privacy records and promote them through the privacy funnel
• Easily enter personal data flows and assessments, share information with colleagues using the workflow, and report internally to customers and data processing authorities

Cost: Contact for a quote

51. Salpo GDPR Compliance Assistance Tool
@salpotech

Salpo Technologies helps businesses grow quickly with CRM and mobile solutions, enterprise app development, and outsourced software development. Their GDPR Compliance Assistance Tool helps users meet compliance requirements and self-serve customer data requests.

Key Features:

• Increase efficiency by providing contacts a self-serve portal
• Built-in reporting
• Audit history provide a complete end-to-end audit trail of contact data
• Cloud-based CRM reduces data protection impact assessment (DPIA) requirements
• May be used as a standalone GDPR solution, with imports and exports from existing CRMs or other contact databases, or managed as an extension of the Salpo CRM

Cost:

• Level 1: FREE for users with paid Silver and Gold CRM licenses – A set of manual tools for smaller organizations
• Level 2: £1,200 plus VAT as an add-on to Silver and Gold CRM license holders – A set of automated tools for larger organizations looking to automate consent processes