Dec
11
2019
--

Hyperproof wants to make it easier to comply with GDPR and other regulations

As companies try to figure out how to comply with regulations like GDPR, ISO or Sarbanes Oxley, they face a huge challenge just getting started. Hyperproof, a Bellevue, Wash. startup, is launching a new product to help companies build a workflow to get them in compliance in a more organized way.

Company co-founder and CEO Craig Unger says most companies struggle with the complexity of compliance. It involves a lot of different activities and often requires the cooperation of employees, who typically aren’t involved in compliance.

Hyperproof wants to provide a single place where companies can undertake their compliance activities. “In reality, there’s no single place where if you’re a compliance officer, you can say, ‘here is where I do my work.’ Here is the equivalent of my SAP system for a CFO or my CRM system for a head of sales or head of marketing — and Hyperproof is just that,” Unger explained.

He says most companies do compliance today in a fairly ad hoc way, relying on technology like spreadsheets to track tasks, and email to make requests for needed information. What Hyperproof does is package all of that into a single program. You indicate which compliance regimen you want to work with, and Hyperproof builds a workspace for you with all of the requirements you need for that compliance framework.

Unger says at this point, the company is simply putting all of the tasks in a single workflow to simplify and organize your activities around this compliance framework.You can also import a spreadsheet to get that information inside Hyperproof, or outline the requirements in your own language in the program.

“Once you have a defined program in place, you can start working with the rest of the organization in a collaborative way by sending emails. The evidence that comes back gets put inside Hyperproof as an immutable record with an audit trail around this data collection,” Unger explained. Should you get audited, you have a central place to show the auditor your work.

The company has concentrated on building the workflow part of this, but in the future wants to add automation and APIs to connect directly to other systems to automate many of the activities. The goal with the initial release was to get companies a compliance framework workflow, and then build on that in the future.

The company was founded last year and has raised $3 million from 23 angel investors in the Seattle area where they are based. In fact, Unger is a former Microsoft employee and also helped found Azuqua, a workflow startup he sold to Okta this year for $52.5 million.

Jul
08
2019
--

The startups creating the future of RegTech and financial services

Technology has been used to manage regulatory risk since the advent of the ledger book (or the Bloomberg terminal, depending on your reference point). However, the cost-consciousness internalized by banks during the 2008 financial crisis combined with more robust methods of analyzing large datasets has spurred innovation and increased efficiency by automating tasks that previously required manual reviews and other labor-intensive efforts.

So even if RegTech wasn’t born during the financial crisis, it was probably old enough to drive a car by 2008. The intervening 11 years have seen RegTech’s scope and influence grow.

RegTech startups targeting financial services, or FinServ for short, require very different growth strategies — even compared to other enterprise software companies. From a practical perspective, everything from the security requirements influencing software architecture and development to the sales process are substantially different for FinServ RegTechs.

The most successful RegTechs are those that draw on expertise from security-minded engineers, FinServ-savvy sales staff as well as legal and compliance professionals from the industry. FinServ RegTechs have emerged in a number of areas due to the increasing directives emanating from financial regulators.

This new crop of startups performs sophisticated background checks and transaction monitoring for anti-money laundering purposes pursuant to the Bank Secrecy Act, the Office of Foreign Asset Control (OFAC) and FINRA rules; tracks supervision requirements and retention for electronic communications under FINRA, SEC, and CFTC regulations; as well as monitors information security and privacy laws from the EU, SEC, and several US state regulators such as the New York Department of Financial Services (“NYDFS”).

In this article, we’ll examine RegTech startups in these three fields to determine how solutions have been structured to meet regulatory demand as well as some of the operational and regulatory challenges they face.

Know Your Customer and Anti-Money Laundering

Apr
02
2019
--

How to handle dark data compliance risk at your company

Slack and other consumer-grade productivity tools have been taking off in workplaces large and small — and data governance hasn’t caught up.

Whether it’s litigation, compliance with regulations like GDPR or concerns about data breaches, legal teams need to account for new types of employee communication. And that’s hard when work is happening across the latest messaging apps and SaaS products, which make data searchability and accessibility more complex.

Here’s a quick look at the problem, followed by our suggestions for best practices at your company.

Problems

The increasing frequency of reported data breaches and expanding jurisdiction of new privacy laws are prompting conversations about dark data and risks at companies of all sizes, even small startups. Data risk discussions necessarily include the risk of a data breach, as well as preservation of data. Just two weeks ago it was reported that Jared Kushner used WhatsApp for official communications and screenshots of those messages for preservation, which commentators say complies with record keeping laws but raises questions about potential admissibility as evidence.

Nov
13
2018
--

Cognigo raises $8.5M for its AI-driven data protection platform

Cognigo, a startup that aims to use AI and machine learning to help enterprises protect their data and stay in compliance with regulations like GDPR, today announced that it has raised an $8.5 million Series A round. The round was led by Israel-based crowdfunding platform OurCrowd, with participation from privacy company Prosegur and State of Mind Ventures.

The company promises that it can help businesses protect their critical data assets and prevent personally identifiable information from leaking outside of the company’s network. And it says it can do so without the kind of hands-on management that’s often required in setting up these kinds of systems and managing them over time. Indeed, Cognigo says that it can help businesses achieve GDPR compliance in days instead of months.

To do this, the company tells me, it’s using pre-trained language models for data classification. That model has been trained to detect common categories like payslips, patents, NDAs and contracts. Organizations can also provide their own data samples to further train the model and customize it for their own needs. “The only human intervention required is during the systems configuration process, which would take no longer than a single day’s work,” a company spokesperson told me. “Apart from that, the system is completely human-free.”

The company tells me that it plans to use the new funding to expand its R&D, marketing and sales teams, all with the goal of expanding its market presence and enhancing awareness of its product. “Our vision is to ensure our customers can use their data to make smart business decisions while making sure that the data is continuously protected and in compliance,” the company tells me.

Powered by WordPress | Theme: Aeros 2.0 by TheBuckmaker.com