MetaCompliance Classic™

MetaCompliance Classic v.2 delivers a robust and easy way to manage your compliance communications and I.T security policies. The software is aimed at organisations who require an intelligent solution to manage their policies.

In every team, large or small, the requirements of compliance can be defined in terms of people, process and technology. MetaCompliance can bring significant value to regulated organisations by way of cost savings and risk mitigation.

MetaCompliance is an intelligent policy communication engine that allows management to determine the amount of leeway, if any, that can be afforded to the user in relation to policy acceptance. At one end of the spectrum, the policy is displayed to the user can be cancelled or deferred to another time for reading. At the other end, management can opt to log the user off or shut down the computer if a mandatory policy is not agreed to. Every action of the user at either ends of the range is recorded and kept in an audit trail.

The policy administrator uses the scheduling functionality of the system to determine when and in what format the users receive their policies. A key feature of MetaCompliance is that the user receives each policy and compliance prompt to their desktop. The system does not rely on the good graces of the employee to access an intranet website and work through a list of policies. MetaCompliance uses its intelligent scheduler to deliver policies to all staff against a predetermined timetable.

MetaCompliance Classic differs from other policy management systems as a result of the emphasis placed on being able to demonstrate compliance in a real world environment. The software has been developed on a distributed application framework which provides for granular and flexible enforcement and scheduling of policies. It also allows the system to dynamically deliver policies as a result of activities over and above user log in.

Benefits

• Automate the communication of policies that fulfill the requirements of government legislation, regulation and I.T governance frameworks.
• Guarantee that every employee receives policies and compliance prompts.
• Intelligent policy engine allows flexibility of policy deployment.
• Ensure an audit trail of all staff and policy interaction in order to meet today’s compliance requirements and provide historical reporting.

Major features and characteristics.

Create	Browse and point to existing policies. Create new policies from scratch. Bring all policies together – ISO17799, Health & Safety, Fire regulations. Automatic policy versioning.
Target	Specify user and groups to receive policy. Determine options available for the user – Defer/Later, Mandate acceptance etc. Configure outcomes for non acceptance – Log off, application lock-out etc. Determine when users obtain policy – Log in, application launch etc.
Schedule	Extensive scheduling capability Determine duration of time for policy presentation. Schedule frequency of delivery. Ensure policies are phased to avoid policy dump following leave.
Survey	Determine user understanding. Configurable multiple choice test generator. Enforcement functionality available for survey. Identification of user difficulty with survey questions. Compliance assessment workflows.
Secure Audit	User activity is stored in a secure database. Full querying and search capability. Demonstrate compliance with audit trail functionality. Full revision control over policies.
Library	Full policy history recorded. Single store for all company policies and procedures. Policy library by user and by group. Access integrity means policy history cannot be changed.
Reporting	Policy adoption reports.
Enforcement	Unavoidable presentation of policies and notices to the user. CTRL ALT DEL use by the user defeated. Mandatory policies ensured user response. Non agreement with policy results in log off or application lock-out.
Resilience	Resilience built into solution to avoid enforcement failure.
Small IT footprint	Integration with the user designed with minimal presence on the desktop. Application optimized for low bandwidth usage.
Non IT users	Barcode functionality available for non computer users Integrated into MetaCompliance audit and Library capability.
Scalability	The use of distributed application framework architecture (Service Orientated Application) allows for flexible deployment options and scaling for the enterprise. Using the interoperability capability of the Microsoft .NET framework, integration with legacy and desktop applications is straight forward.
Unattended installation	Installation is accomplished through MS ClickOnce technology as part of MS .NET 2.0, installation can also be done via SMS packages, MSI installs, Active Directory Group Policy install, scripting install.
Microsoft .Net Framework based	MetaCompliance Classic has been developed using the Microsoft .NET framework. Not only does this mean that the product runs fast but the .NET framework includes the most widely accepted integration development environment. Using Microsoft as a strategic partner means that MetaCompliance can implement rich user interfaces into desktop applications and supports ASP.NET, Windows clients and Rich Client interfaces. MetaCompliance Classic is a Service-Oriented Application which uses all of the scalability of the .NET unified framework. This distributed application framework provides: Interoperability & Integration Secure, Reliable, Transacted Messaging
Active Directory and eDirectory support	Map access rights to users or user groups of an existing Active Directory Domain and Novell eDirectory objects.