GDPR – how we comply with the new EU directiveThe new EU directive for data protection and privacy, GDPR, is rather complex, and there are still parts that may seem unclear.At Indpro, we have the skills and knowledge to guide our customers through the process of ensuring that our cooperation complies with GDPR.Storing sensitive dataOur processes guarantee sufficient security for data which is personal and potentially sensitive.We have processes in place for how to receive personal data, for how to handle and store the personal data – and perhaps most importantly, how we remove data and under which circumstances we should do so.Authorized agreementsThe agreements (for example personal data processing agreements) that we sign with our clients have been professionally developed and follow the regulations of Datainspektionen (Swedish Data Protection Authority) and GDPR in the management of personal data. The agreements comply with GDPR.Before we start a cooperation we do a thorough assessment of what data we may potentially work with, which data is personal and sensitive, and which data is not.If we are to work with sensitive data we give recommendations for how to set up our process to minimize security risks. Then we set up the process with the client, giving the client full insight in how we manage the data.Rules on data transfers outside the EUWhen data is transferred to countries outside the EU, stricter regulations apply. Whenever possible, we set up a working procedure that allows us to work in the client’s environment through secure access points. In 9 cases out of 10 we do not need to handle personal data at our own sites, neither in Sweden nor or at our delivery center in India. But in those projects where managing data outside of the EU is necessary, we have the processes and the agreements in place to ensure GDPR compliance.Security in our delivery centerIn our preparations for GDPR we have heightened the security at our big delivery center in Bangalore, India. We already had biometric identification in place for accessing the office, and have developed new policies for staff using their own devices at the office. We still allow BOYD (bring your own advice), but we have updated our policies and introduced a stricter process for controlling when data is brought outside of the office. We save log history and have routines in place for what to do if a data breach does happen. We have also gone over the routines for keeping our IT equipment safe.Trained staffCompliance with GDPR requires that the whole organization receives training in what GDPR and the regulations of Datainspektionen signify, and understand the importance of abiding by the processes and rules in place.We continuously train our staff in GDPR compliance, in Sweden as well as in India.Regular auditsWe audit our policies, processes and systems regularly: every quarter, six months and annually. In our audits we go through the processes, and explore what improvements can be made.GDPR compliance is not a one-shot project, but a continuous process. Indpro continues to keep up to date with the development of the data protection regulation, to ensure that we, and our client projects, comply with current legislation.
A success factor is that Indpro and their developers also takes the time to understand why, not just what is being developed. That gives a better understanding and a better result every timePer TorstenssonProject lead & Business development, SenabIt would have been too big a challenge for us to develop the new version of QuickPick without the help of Indpro.Mikael AnderssonCEO, Qsys Sverige AB
Indpro are very easy to communicate with, both developers as well as management. Which is a prerequisite for a good end resultAlexander UndénFörskoleappenWe had numerous reasons for wanting to set up a web shop, and Indpro immediately felt like the right provider for us. They don’t only give us quality development, it’s also about knowledge and providing us the right guidance.Fredrik NavjordCEO, Metric Industrial AB
It’s easy to work with Indpro. They are committed, they don’t complicate stuff and they inspire confidence. On top of that, they’re fair – and that’s important in a long term partnership.Jan JosephsonCo-founder and CTO, op5Since we were a startup with a very good idea but limited money, Indpro was a very suitable partner. With their help we managed to launch our product while still keeping our budget.Emanuel NybergCEO, Assistansboken Sverige AB
“The team has been passionate about the project since day one, and we have worked together closely. I don’t think our platform would have turned out this good with a different partner. Johannes EkbladCTO & Founder, Fenix begravningWhat I like best about our team at Indpro is that they are committed. You can tell that they enjoy working with Mathem.Fredrik SewénCTO Mathem
Indpro has given us muscle in our development, something we did not have on our own. Additionally, we now have better control over requirements, planning and quality.Jan GezeliusCTO, iBinder Pärmen ABIndpro and their dedicated team have a long term horizon. That’s why we’ve chosen to work with them over several years.Pär HagbergAvdelningschef BIM- och GISavdelningen, Tyréns AB
Our commitment is our strength. We don’t just want to deliver IT – we want to create value. For the client of course, but also for the client’s client.Pavel SiddiquePavel Siddique, CEO IndproIndpro is a good offshoring partner that can really help you getting started. They are solutions oriented with great commitment to their clients.Arne FridmarCTO, Exicom
Indpro’s developers enabled us to speed up the product development and increased our ability to expand our product portfolioAndreas NõuProduct Director, Time Care ABIndpro understands our business and it works like a true long term partnershipHans NottehedCTO, Info24 / Tingcore