Introducing Breach Navigator

Streamlining data breach management

Proven cloud or on-premise data breach management process, analysis and advice

Powered by experience and expertise

Breach Navigator’s decision engine is based on best practice developed over years of working with regulators, compliance teams and law enforcement. Breach Navigator was built from the ground up by lawyers with a combined experience of more than 60 years handling data breaches. It is informed by direct engagement on more than 250 live cases, enhanced through academic analysis of dozens of regulatory findings from the Information Commissioner’s Office in the UK and Data Protection Authorities across Europe.

This legal expertise allows the software to make consistent assessments of risk severity and reporting obligations, and to suggest specific actions and remediation plans that have proven to be effective in cases that share similar attributes.

Access anywhere, integrate with ease

Available either on-premise or as an always on cloud-based SaaS. Highly scalable, Breach Navigator is accessible from any browser, including on mobile devices. It is available 24/7/365, since we know breaches happen around the clock.

APIs afford easy integration with existing incident management or GRC platforms, meaning that the singular intelligence and automation provided by Breach Navigator can easily augment and enhance any existing tools and processes.

Regularly updated

Breach Navigator is regularly updated to reflect changes to legislation and regulatory decisions. Using a combination of legal expertise and specialist tools and teams, the Breach Navigator decision engine is designed to adapt to updates in legislation, rulings and best practice.

Process and management aligned

For the data breach management process to be effective, it must be comprehensive and instil confidence that lessons have been shared and learned. Breach Navigator provides a series of dashboards and tools designed to quickly identify trends within an organisation’s incident profile.

Where breaches do occur, DPOs can confidently document and share their response and triage reasoning. Stakeholders can rely on Breach Navigator’s comprehensive breach advice and insight to make the most effective, evidence-based decisions.

Data breaches are complex business events with far-reaching financial and reputational consequences. Managing incidents well and making the right decisions on risk and reporting requirements requires a great deal of expertise, discipline, and support.

Breach Navigator provides that expert guidance and support for organisations of all sizes.

Why Breach Navigator?

Data Protection Officers (DPOs) are tasked with designing and implementing processes that can respond to a dynamic set of risks and instill confidence in senior management. These processes must ensure that, if a breach does occur, the organization’s customers, stakeholders, and reputation will be protected.

DPOs and their teams are required to demonstrate highly specialized expertise and be able to guide decision-makers with clear evidence and rationale. They must ensure that employee awareness and understanding of what constitutes a potential data breach is high and that every incident can be assessed and dispatched confidently and in full compliance with the law.

Breach Navigator is a powerful software tool that combines legal expertise with clever software to help DPOs and their teams deal with potential and actual data breaches in a consistent, informed manner using the very latest best-practice techniques.

Breach Navigator provides a guided step-by-step process for breach handlers and managers through the following stages:

  •         Notification

  •         Triage

  •         Risk assessment

  •         Reporting requirement assessment

  •         Action planning

  •         Remediation plans

  •         Report Draft

  •         Investigation stage

  •         Closing a case

  •         Analysing incident types and outcomes

In this film, Terry Dawson asks Jonathan Armstrong about Breach Navigator, and they walk through a data breach using the tool.

What does Breach Navigator do?

Promotes awareness and notification

Offers a simple interface for any employee to notify the incident security or breach handling team of any potential issue. This can be accessed through simple email, intranet, mobile web forms, or via API (e.g. through an existing service desk reporting or ticketing system).

Automates assessment

The core decision engines rate risk severity and reporting needs, suggesting appropriate categories for the data team to review and decide upon.

Prepares communication for other stakeholders

Provides communication drafts for other stakeholders, such as additional regulators, insurance companies, supply chain partners, media outlets, breach victims, the board, etc.

Ensures consistency

Provides breach handlers with a consistent triage process for any type of potential data privacy event, supported by guidance notes and templates at each stage.

Recommends actions and remediation plans

The system dynamically recommends immediate actions to ameliorate the situation and longer-term remediation plans based on the type of event, prompting the breach handler to indicate which actions are on-going, complete, planned or not required.

Provides a complete audit trail

Shows an audit trail that demonstrates consistent handling of events and a robust approach to risk management, compliance and reporting obligations.

Aids resource management

Comprehensive data analytics highlight what types of events are happening where across your organisation and can help to secure, plan, and focus resources effectively.

Records the process and builds a timeline

Automatically builds a timeline of actions from notification, helping all team members keep track of progress against any regulatory deadlines.

Prepares the draft report for the DPA

Provides a draft report to be sent to the Data Protection Authority with necessary details of the incident, supported by a clear timeline and details of actions and remediation plans. This saves the data team hours in document assembly and gives the DPA confidence that any breach is being dealt with effectively.

Helps with recruitment and retention

Give your teams the tools they need to perform well, and they are likely to stay longer. Breach Navigator provides incident managers with an intuitive interface, expert guidance and a proven approach to dealing with complex issues.

Eases the burden on regulators

By ensuring that incidents are assessed and reported correctly and by helping to ensure that best practice continues to evolve, we hope to help regulators focus on just those cases that require their attention.