BUSINESS CASE

Compliance

InfoSec regulations like GDPR, PCI DSS, HIPAA, and CPG234 essentially boil down to having good control of access to data, and proving control under audit. 

ISO 27001:2013 requires business reasons why people have access to data. Financial institution spot checks must prove data access is appropriate. 

These are difficult things to show when permissions are a mess in Microsoft Teams, SharePoint and OneDrive. 

Compliance with Torsion

Within hours of connecting Torsion to your Microsoft 365 tenant, Torsion gives you unprecedented insight into data access across your information estate, saving huge amounts of time and stress at audit time.

See Who Has Access

Click on any file, folder, library or site, and Torsion instantly shows you who has access, who gave it to them, when and how. This can be put into a report to be printed or emailed.  

Reasons For Access

e.g.: “Mary has access to the Finance site, because she’s covering for Jane while she’s on vacation”. For an auditor needing proof that access to the Finance data is correct, a quick check whether Jane is still on vacation, and Mary’s access is proven to be correct. 

Simple Certification Campaigns

Torsion orchestrates certification campaigns, where the business owners of data are asked to certify that access to their data is correct and appropriate. Certification takes just a few seconds, and runs completely on auto-pilot, proving the business has good control of data access.

Get in touch

Find out more

Got a question or would like more information?