Cognitive X Blog

Sebastien Aube

Facto Communications / A Cognitive X Solution Company

18006702649 ext 101

factocomm@cognitivex.com

For Immediate Release 8/30/2017 Moncton NB. Today, Cognitive X Solutions launches Facto Communications, a Hosted VOIP/PBX specialist. Facto Communications will specialize the design and installation of digital phone systems. Building custom solutions and VOIP opens up new opportunities and new markets in Canada and the United States ~ CEO, Sebastien Aube.

These days businesses grow and evolve at a fast pace. Having a phone system that can keep up with the changes is essential for these businesses to survive and thrive. Our product can typically save from 30 to 50 percent over traditional phone systems. With no contracts and the flexibility to shrink and grow as your business requires.

About Facto Communications. : Facto Communications  is a custom business phone system designer and reseller. Facto helps businesses build phone systems that are truly a fit for their operations. The company was founded in 2017 with offices in Moncton, NB, Canada.

About Cognitive X Solutions.: Cognitive X is a custom software solutions provider specializing in mobile/web application design and development. The company was founded in 2006 with offices in Moncton, NB, Canada

The European Union's General Data Protection Regulation (GDPR) goes into effect on May 25, 2018, are you ready for it?

The GDPR introduces new accountability obligations and stronger rights and restrictions on international data flow.   Any organization that handles data about European citizens, regardless of where that organization is located, is subject to the GDPR.  Which makes the GDPR really the first international standard on data protection.  

But what does that mean to you / your company?

At the simplest level, if you are found to be in violation of the GDPR, you could be fined up to €20 million (almost $30 million CDN) or 4% of "group annual global turnover", whichever is greater.  So gross violation (ie.  not reporting a data breach within 72 hours) could result in a $30,000,000 minimum fine.

What does the GDPR entail?

These are the points that you need to know:

1. It Applies to All -- If you work with personal data of European citizens, it applies to you.  The GDPR has, however, broadened the definition of "personal information" to include "anything that can be used to identify an individual".  That includes genetic, mental, cultural, economic, and social information as well as the regular data (address, name, birthdate, etc).
2. You must be able to prove consent -- It is not enough to simply state that you are collecting information, you need to make sure that you specifically ask for permission and that you track when and how that permission was given.  You must also use plain and simple language to explain how and where the information will be used.  Opt-outs are not allowed (it must all be opt-in).  People must be able to decline the collection of personal information and you may only decline service(s) if the data collection was integral to the service.
3. You might need a Data Protection Officer (DPO) -- Public authorities that process personal information and companies whose core activities require "regular and systematic monitoring of data subjects on a large scale" or consist of "processing on a large scale of special categories of data", require a DPO.  In Europe alone, this means that almost 30,000 new DPOs will need to be hired/appointed in the next 2 years.  If you already have a CPO (Chief Privacy Officer), you simply need to make sure they are following the GDPR as well.
4. You may need to perform Privacy Impact Assessments (PIA) -- If there are areas of your business that could expose personal information, you need to perform a PIA.  This could mean that a PIA is required before starting any new projects involving people's personal information.
5. You must report data breaches within 72 hours -- If you are breached, you must notify your customers within 72 hours.  But to accomplish this, you first need to know you have been breached and many companies wouldn't know they have been as they don't have the right technology and processes in place to do that.
6. People have the right to be forgotten -- This goes a step further under the GDPR, in that you are only allowed to hold data as long as you need it and cannot use it for purposes other than what it was collected for.  And if an individual asks to be removed from your system, you must do so.  And it must be as easy to remove the data as it was to consent to its collection (example, their account info page should have a delete account button).  If you wish to use collected data for a purpose other than what you collected it for, you must ask for fresh consent.
7. If you are a data processor, you are also liable -- If your company processes data on behalf of another company (example, call centre doing market research for another company), you also fall under the GPDR and need to implement the same procedures.
8. Requires privacy by design -- Software must ensure proper and complete erasure of data.  If you backup your DB, then erase personal data and then have to restore from a backup that contains that personal data, you have to then make sure that the personal data is again removed.  It is going to be tricky in cases like this and require careful planning of procedures and technology.

Your idea is worth nothing. Ouch.  

Now it's time to sprinkle it with some value, at least perceived value. You're ready to get out there and validate your idea with your potential customers.

While you are at it, might as well get some early adopters over a nice cup of coffee or espresso.

Here is a list of questions you can use to get the most out of your interviews.

What SaaS products do you subscribe to currently?

Have you ever canceled a subscription to a SaaS product? Which one and why? 

What is your biggest challenge when trying to solve _________? 

What would it be worth to you if you were able to address that problem? 

How many people in your organization face the same issues?  

What is your business culture?  

How is employee performance tracked?

What is your companies budget when it comes to <<department name>>?

What is the number one issue you worry about when trying to transition from your work life to your personal/family life? 

Would you be interested in taking part of our early adopter program?

Given a choice, would you rather work on <<this>> or <<that>>?

If you were to review your day, how much time do you spend doing <<x>>?

What is most important for you when dealing with <<issue>>?

What type of work makes you feel more accomplished?

Have you tried to solve this issue before, how did it go?

What would you have done differently?

How much does this issue cost your business on a daily basis?

What is your current process for managing this <<issue>>?

Tell me more about <<x>>?

You've given me great information here, what could we have missed?

There you have it. It is essential to ask open ended questions and let them think for a few seconds before answering. You'll also want to stay away from leading questions as you will get short answers.  

You can also throw in a few personal interest questions if you feel they are not loosening up.

Now go! Add value to your idea.

Do you have any suggestions for questions you can ask a potential early adopter? If so, please add them to the comments below.

Photo by Luke Chesser on Unsplash