GDPR, ITAR, CCPA, CTPAT, FSMA - is your head swimming with all the different acronyms relating to security compliance? Are you feeling a little overwhelmed facing the mammoth task of ensuring your company is addressing all of their compliance requirements?
We’ve got some good news - SwipedOn’s visitor management platform is the perfect tool to support your business on your compliance journey. As an international company working with businesses from a wide range of industries, we are well-equipped to offer the support you need to comply with the following list of common compliance standards via our customizable platform.
International Traffic in Arms Regulations (ITAR) controls the export and import of any defense-related services, articles and technologies defined under the United States Munitions List (USML).
In short, if a company does business of any kind with the US Military then it must be compliant with ITAR. The flow-on effect of this is that more companies are requiring their supply chain members to be ITAR compliant as well. So if you fall into any of these five categories: Wholesaler, Contractor, Tech/Software Provider, Distributor, or Third-Party Vendor to the US Military then you will be required to comply with ITAR’s rules.
As ITAR’s main purpose is to prevent unauthorized access to data by foreign nationals, your visitor management is an important component in ensuring compliance. It is your responsibility to ensure that sensitive information isn’t accessible to just anyone - SwipedOn is the perfect tool to help you do just that.
Launched in 2001, the Customs-Trade Partnership Against Terrorism (C-TPAT) is a voluntary partnership program led by the United States Custom and Border Protection Agency (CBP) that aims to strengthen and improve U.S. border security whilst also improving companies’ supply chain processes with respect to protection from terrorism.
If your company wants to achieve C-TPAT certification you will need a documented process to ensure that your international supply chain is determining and reducing risk.
Providing controls to prevent unauthorized entry to facilities.
Providing the ability to ensure the positive identification of all employees, visitors and contractors at all points of entry.
Offering a system for employee identification to be in place for positive identification and access control purposes.
Supporting a facility’s policies around issuing visitor, contractor and employee badges - including the ability to have a badge returned field that security/reception could monitor to ensure all badges are returned by the end of the day.
Retaining historical records of all entries and exits from facilities so that audit records are available indefinitely and can be exported in a timely manner.
Supporting multiple entry points and data sharing between security guards/reception/concierges via the SwipedOn dashboard so that all gatekeepers can monitor who is in the facility at any given time.
Allowing for the arrival and dissemination of packages by the gatekeepers via the Deliveries add-on.
A relatively new Act launched at the beginning of 2020, the California Consumer Protection Act (CCPA) is designed to give consumers greater control over their personal data and the right to know which businesses are using it. The act’s four primary goals are that as a consumer and patron you can be afforded to own, control and secure your own personal information and in doing so hold big corporates accountable.
Enacted in 2011 by the FDA (Food and Drug Administration), the Food Safety Modernization Act (FSMA) main focus is to make food handling safer in the United States. This protection of the food supply chain process and food-related safety issues includes who has access to food production sites and when. For your business to comply with this act you’re responsible to ensure that visitors or contractors are complying with the safety regulations of your site, whilst also feeling welcomed and safe at the same time.
Good Manufacturing Practises (GMP) help ensure a quality product by implementing best practices, which have the force of law, to require manufacturers of food and beverages, cosmetics, pharmaceutical products, dietary supplements, and medical devices to follow certain regulations. The main aim of these regulations are to protect the consumer from purchasing a product which is not effective or even dangerous.
The EU General Data Protection Regulation (GDPR) replaces the Data Protection Directive 95/46/EC and was designed to harmonise data privacy laws across Europe, to protect and empower all EU citizens data privacy and to reshape the way organisations across the region approach data privacy.
GDPR’s primary purpose is to create one coherent data protection framework across the EU. In doing this, GDPR substantially enhances data protection and privacy rights for persons in the EU, and imposes a comprehensive set of principles and obligations with which organisations operating or offering products and services in the EU must comply.
Visit our GDPR page for more information about how SwipedOn can help you with GDPR requirements
The Australian Privacy Act 1988 was introduced to promote and protect the privacy of individuals and to regulate how Australian government agencies and organisations with an annual turnover of more than $3 million, and some other organisations, handle personal information
Updated December 2020, the New Zealand Privacy Act (NZPA) completes a long-anticipated overhaul of New Zealand’s privacy law. In addition to new reporting obligations and notification requirements for privacy breaches, the Act makes several significant changes to New Zealand’s privacy law. Companies that hold information about individuals must be prepared to comply with the new data breach reporting obligations.
115 The Strand