Metacompliance is delighted to welcome Walsall Metropolitan Borough Council as a new customer. Walsall Council has invested in Metacompliance software with the aim of supporting their staff in the implementation of their new initiative to improve data protection compliance throughout every level of the council.
As Nailah Ukaidi, Information Risk and Governance Manager, commented, “We heard about MetaCompliance and thought that a Policy Management and Compliance tool could help to make policies and procedures (for all areas of the Council) more visible and enforceable, thereby raising the standard of individual accountability and conduct.”
Walsall Council state clearly on their website, that they are “fully committed to compliance with the Data Protection Act (1998) and [they] recognise the rights and obligations enforced by the act in the processing of personal data within the organisation.” Walsall Council regards the lawful and correct handling of personal information as fundamental not only in ensuring the highest possible standards of operations within the council, but also as an essential measure in maintaining confidence between the council and those with whom it provides its services.
In order to operate efficiently and effectively, Walsall Council must collect and use personal information about the people with whom it works. These include members of the public, current, past and prospective employees, clients, and suppliers. In addition, it may be required by law to collect and use information in order to comply with the requirements of central government.
This creates a serious compliance issue with employees required to maintain the highest levels of professionalism and compliance in their everyday tasks.
As Nailah Ukaidi revealed, “We were having difficulty confirming that staff had read, accepted and fully understood the requirements of policies and procedures across the Council. This was of particular concern in the area of Information Risk and Governance.”
The Metacompliance Policy Management and Compliance tool was identified as a valuable investment that would improve the accountability of everyone who works with personal data. Walsall Council were attracted to the ability of the software to enable the council to automate and manage the key tasks associated with user awareness and engagement with highly sensitive personal data in all areas of information assurance, including risk assessment, the measurement of organisation wide IT security posture, and policy management.
Nailah was certain that the Metacompliance software would allow them to meet the specific targets that the council had set for themselves in their move toward a stronger compliance culture. Nailah sets these targets out clearly:
“In particular we wanted to:
Nailah was convinced that Walsall Council had made a sound investment that would ensure the council met its external compliance requirements while ultimately benefiting its employees and the people of the borough that it serves. As Nailah concluded, “We chose Metacompliance because we believed it could deliver all of the above in a flexible and user friendly way, while at the same time complying with all of the requisite procurement requirements and the council’s best value duty.”
MetaCompliance has a clear vision of making Compliance and IT Security easier for organisations. The software can ensure the active participation of all staff in compliance initiatives such as policies, eLearning, and surveys, thus mitigating the risk of compliance incident and the associated fines. The software can be used to demonstrate that staff understand compliance obligations by being tested with questions. The ability to deliver increased user participation in compliance and IT Security campaigns provides the necessary audit information to generate reports that demonstrate the organisation’s “duty of care” to Regulators.