Solutions

Metacompliance Ltd. develops Policy Management & User Awareness software solutions that help organisations mitigate the risk of a compliance failure or I.T. security breach. From Data Protection to Health and Safety, the last number of years has seen the pace of compliance demands increase. At the same time, evolution in the adoption of Information Technology, in the form of Social Computing and Remote Access, has delivered formidable challenges to the I.T. department. The fact of the matter is that most organisations have significant responsibilities and potential liabilities as a result of the Compliance and I.T. security demands.

Metacompliance Ltd. has developed its MetaCompliance™ suite of software to assist organisations in devolving these responsibilities to the main source of risk - employees and subcontractors. MetaCompliance™ obtains affirmation from the user in the form of self certification. This happens when policies are presented to the user and as a result of our patented enforcement technology; the user provides a response to the policy or prompt.

The MetaCompliance™ software suite is based on an Intelligent Policy Engine. The product suite is broken into modules in order to provide flexibility to customer requirements. The entry level software is called MetaCompliance Classic™. This solution is aimed at user populations of under 250 users. The next level of software is the MetaCompliance Enterprise™ which is a functionally rich solution aimed at organisations with greater than 1,000 users and who require a comprehensive Governance, Risk and Compliance (GRC) solution.

Apart from architectural differences, the Enterprise version of the software has three key pieces of functionality not contained in the Classic version. These are Review Module, Dynamic Intercept™ and a Survey Engine.

The Review Module is a workflow engine that manages role based approvals relating to the publishing of company policies and risk assessments to the staff.
Dynamic Intercept™ provides the organisation with the ability to obtain employee self assessment on the basis of a computer event. MetaCompliance Policy Enterprise™ currently has three Dynamic Intercept™ brokers. These are USB device, Internet Explorer and Microsoft Outlook. The system will provide a policy to the user on the basis of these computer events, inserting a USB device, accessing the Internet or opening e-mail. More brokers will be provided in subsequent releases of the software.
Survey Engine obtains a before and after measurement of user awareness. This is critical for any best practice Governance Methodology. The most effective method is through the use of user surveys. However, as anyone who has ever attempted an employee wide survey project will know, user participation is always a problem. Using Metacompliance’s patented enforcement technology, user surveys can be communicated to the user and the level of enforcement can be decided by the administrator.

The MetaCompliance™ suite has two other important modules. These are MetaCompliance Laptop™ and MetaCompliance Non Electronic™. Both these products extend the participation of users in best practice awareness campaigns, providing for user self certification beyond the traditional PC logon.

MetaCompliance Laptop™ helps companies deal with the vulnerabilities created in the security posture of an organisation by ensuring that laptop users are fully aware of their governance responsibilities relating to devices taken off company property.

MetaCompliance Non Electronic™ provides for those staff members who do not have access to a company computer. This could be shop floor workers, grounds men or kitchen staff. Using a combination of traditional mail shots and barcode technology, the software ensures that MetaCompliance™ becomes a secure vault for all company policies and staff actions.

MetaCompliance™ software is the most complete and functionally rich intelligent policy management solution available. Designed for its ease of implementation, these products are an ideal starting point for companies coming to terms with their I.T. Security and Compliance commitments.