GDPR Compliance

Is your organization properly equipped for GDPR Compliance? We will provide your business with a practical solution for data protection for whistleblowing cases, ensuring you remain GDPR compliant.

Learn more about our Ethics Reporting Hotlines.

Don’t Wait for a Breach to Happen. Get the Tools You Need to Protect Your Business.

Our IntegrityCounts global ethics hotline and web based reporting portal offers your employees a safe and secure way to report their concerns. The data is then collected and stored in our robust case management system for you in real-time. Search, filter, and find all the data you need via the simple-to-use dashboard. Dive deep into the data, create reports, run detailed analytics, and mitigate safety risks all in a matter of seconds.
Anonymous Reporting

Your employees won’t have to worry about retaliation. Our 24/7/365 toll-free compliance hotline and web intake portal offers a safe and secure platform to voice concerns.

User-Friendly Case Management

Get the tools you need for a streamlined case management process. Our interface is easy-to-use and gives you immediate access to all the information so you can quickly identify and mitigate risks.

Intuitive Whistleblower Reporting Software

Real-time reporting makes it easy to find and organize the data. Search, filter, and print out the data you need for day-to-day compliance or GDPR audits.

Powerful Insights and Analytics

Protect the integrity of your business with the insights and analytics needed to gain control over your ethics data.

GDPR Compliance for the European Union

In May 2018, the European Union enacted the General Data Protection Regulation (GDPR) to provide better protection of citizens’ personal data, which involves concealing the identity of whistleblowers. It’s required that Canadian companies offering goods or services to EU residents comply with these new rules, otherwise they may receive millions of dollars in fines.

How to Ensure Your Business is GDPR Compliant

  • Effectively implement a GDPR compliance strategy.
  • Anonymize collected data to protect whistleblowers’ privacy.
  • Safely handle the transfer of data.
  • Name a Data Protection Officer (DPO) to oversee GDPR compliance.
  • Inform the accused person of the storage, nature of the data, purpose, processing and identity of the controller.

Frequently asked questions

We now have an FAQ list that we hope will help you answer some of the more common ones.

How do you obtain and document expressed permission to store people’s personal Data?

Our web based case intake forms clearly identify where personally identifiable information is being requested. We also prominently include our terms and conditions and privacy policy on our website.

How long do you store client data?

We retain client case information for the duration of a client agreement with us, unless explicitly instructed otherwise. In the event that a client terminates their contract with us, if so instructed by a client, we can either return client data to their possession in an agreed and commonly accepted machine-readable format or we can securely delete their data. If the client makes no instruction, we agree to retain that client’s case data for at least seven years beyond the termination date of the client contract and no more than ten years beyond the termination date of the client contract, unless otherwise instructed by the client.

What processes do you have in place to achieve GDPR compliance?

WhistleBlower Security is in the business of protecting its clients’ sensitive data. As such, prior to GDPR, we were already committed to protecting our clients’ rights and meeting our obligations under Canadian privacy regulations including FIPPA, PHIPA, and PIPEDA. We will continue to follow best practice privacy and security protocols to ensure the safety of the reports received through our system. In order to ensure we are GDPR compliant, we successfully completed an assessment of our existing policies and practices against the legislation.

EU Clients

We will execute a contract with all EU clients specifying obligations under GDPR.

Document Instructions

We will deliver documented instructions agreed upon with EU clients regarding data processing.

Data Access

Individuals with access to data will be subject to a confidentiality agreement.

Data Breaches

We’ll notify out clients of any data breaches within 72 hours.

End of Contract

At the end of a contract, all data will be deleted or returned to the client barring any specific legal obligations.

Our Commitment

Our Data Privacy Officer is committed to ensuring the safety of your data through our Information Security Policy.

Member testimonials

Here's what some of our clients think about our product and services.
video testimonial Elise Rees

Elise Rees, Independent Board Director
Great Panther Silver Limited

“Having an independent route for people working in the field to voice their concerns and to highlight issues they think are there is incredibly important.”

video testimonial Robert Joseph Gayton

Bob Gayton, Independent Director
B2Gold Corp

“I certainly would recommend WhistleBlower Security than anybody, and I have, and this is not just for local people, this is for people all over the world.”

Some of our clients include

city of hamilton 184 01
SIU ICSS 184 02 01
MEC 184 02
bcaa 184 01
BCLC 184 02 01
b2gold 184 02
petrochina 184 02 01
natgasoline 184 02
qhc 184 02
heritage 184 02
leagold 184 02
africare 184 02
rsenergygroup 184 02
rambler 184 02
NWMO 184 01
Ciklum logo
redeaglemining 184 02 01
Algonquin Grp 184 02 01
CAS 184 02
heart stroke 184 01
RelianceWorldwideCorp 184 01
WendellFoster 184 01
dlight 184 01
walkergroup 184 01

Learn More About IntegrityCounts

Anonymous 24/7/365 ethics reporting. Book a demo today!

Global Hotlines

We have the tools to help you create and manage a speak-up culture.

Anonymous Reporting

Give staff and the public the tools to safely speak up when they see something wrong.

Powerful Analytics

Dive deep into reported issues to uncover any hotspots needing attentions.