How We Work
Flowz follows the principles of the international standard on Information Risk Management – ISO 27005. This standard defines two types of primary data assets:
– Business processes and activities = data flows or transactions
– Information = data assets or data repositories
Flows uses responsive customer-defined data gathering to map together data flows and data assets to build a picture of personal data processing, associated risks and risk-mitigating controls operating across your organisation.
![gears-png gears-png](https://flowz.co.uk/wp-content/uploads/2022/02/gears-png-1.png)
Data exchanges that don’t go via the organisation but for which the organisation is a controller or a processor.
![Inbound-data-flow-Organisation-Outbound-dataflow](https://flowz.co.uk/wp-content/uploads/2022/01/Inbound-data-flow-Organisation-Outbound-dataflow-1.png)
![Inbound-data-flow-Organisation-Outbound-dataflow](https://flowz.co.uk/wp-content/uploads/2022/01/Populating-Flowz-Centralised-vs-Distributed-Automated-vs-Manual.png)
Deployment models
Flowz can integrate with data discovery tools which can automate data collection:
Understanding your strategy is a vital step towards successful deployment.