About a-team Marketing Services
The knowledge platform for the financial technology industry
The knowledge platform for the financial technology industry

A-Team Insight Blogs

Pontus Vision Offers Open Source GDPR Solution with GCHQ Style Security

Subscribe to our newsletter

If you are still looking for a General Data Protection Regulation (GDPR) compliance solution, London based regtech Pontus Vision may be able to help you with its open source, secure software that allows firms to search for any given customer and quickly access all of the data the business holds about them in a single consolidated view, without changing underlying systems.

Pontus Vision started up in London in 2011 with a focus on low-latency front office applications. With support from an innovation lab it sold solutions to a number of financial institutions and was asked by UK government to support an open source big data project. This morphed into a wider government remit using similar architecture for a performance tool.

Based on this architecture, the company has developed a commercial open source GDPR solution that uses Apache software and includes GCHQ level security. Financial firms can use the solution to streamline and automate data management processes without changing underlying systems or procedures.

Leonardo Martins, founder of Pontus Vision, says: “We have designed Pontus Vision GDPR to enable financial services firms challenged with historical data management issues to quickly and efficiently meet GDPR requirements.”

He describes the GDPR solution as having three steps, extract, track and comply. Extract requires liaison with IT teams to tap into various data sources; track includes data storage and is based on a Janusgraph database that enables powerful and fast queries to see, for example, if a person has given consent to the use of particular data; comply uses a scoring mechanism to assess a firm’s compliance against each of the 12 steps in the Information Commissioner’s Office’s guide to GDPR. A weighted average across all 12 scores allows a data protection officer to see on one page how compliant the firm is, while the graph database can, for example, provide detail on which machines and tools are impacted by a data breach.

As a small company, Pontus Vision is working with partners to deliver its GDPR solution to market. The business model allows the GDPR software to be downloaded at no charge with users paying a yearly support and consultancy fee.

Subscribe to our newsletter

Related content

WEBINAR

Recorded Webinar: Hearing from the Experts: AI Governance Best Practices

The rapid spread of artificial intelligence in the financial industry presents data teams with novel challenges. AI’s ability to harvest and utilize vast amounts of data has raised concerns about the privacy and security of sensitive proprietary data and the ethical and legal use of external information. Robust data governance frameworks provide the guardrails needed...

BLOG

A-Team Group Data Management Awards USA Winners Announced at DMS NYC 2025

A-Team Group has announced the winners of its 4th annual Data Management Insight Awards USA 2025, and we extend our congratulations to the individuals and companies recognised with awards this year. The event shines a light on the top providers of data management solutions, services, and consultancy for the capital markets across the United States....

EVENT

TradingTech Briefing New York

Our TradingTech Briefing in New York is aimed at senior-level decision makers in trading technology, electronic execution, trading architecture and offers a day packed with insight from practitioners and from innovative suppliers happy to share their experiences in dealing with the enterprise challenges facing our marketplace.

GUIDE

The DORA Implementation Playbook: A Practitioner’s Guide to Demonstrating Resilience Beyond the Deadline

The Digital Operational Resilience Act (DORA) has fundamentally reshaped the European Union’s financial regulatory landscape, with its full application beginning on January 17, 2025. This regulation goes beyond traditional risk management, explicitly acknowledging that digital incidents can threaten the stability of the entire financial system. As the deadline has passed, the focus is now shifting...