SpiralMobile – secure data backups compliant with GDPR

Business context

The client from the USA supports the implementation of innovative technologies in organisations, promoting interactive meetings, business mobility and comprehensive ICT solutions. As an authorised reseller of solutions from companies such as Cisco, VMware AirWatch, Microsoft and Adobe, it places strong emphasis on environmental responsibility and high service standards.

In 2018, with the ongoing digitalisation of the banking sector, expectations around personal data protection and GDPR compliance increased sharply. This became particularly important in environments based on Microsoft enterprise mobility, where employees use mobile devices on a daily basis.

The goal of the project was to deliver a mobile application that would enable data backups and help maintain GDPR compliance in organisations operating on iOS and Android, without compromising usability.

Challenge

The key challenge was to design a solution that combined a high level of security, regulatory requirements and ease of use. The application needed to reliably create backups of personal data while fully respecting privacy and data protection principles.

Compliance with GDPR guidelines was required in the context of Microsoft enterprise mobility, including consistency of data processing workflows, auditability of actions and minimisation of breach risk. It was also necessary to ensure transparency for the end user.

An additional aspect was to provide cross-platform capability without increasing maintenance complexity – the solution had to work equally smoothly on iOS and Android, offering a consistent experience and easy adoption across organisations.

Solution

Leaware used Xamarin to create SpiralMobile for iOS and Android devices, based on shared code for both platforms. This made it possible to build a consistent interface and accelerate feature delivery while maintaining high quality.

The application gives users the ability to create backups, which significantly improves the security of personal data. The solution was designed to support compliance with GDPR requirements in the Microsoft enterprise mobility environment, including through access control and transparent data operations.

Ease of use and a low implementation threshold were prioritised so that security and compliance would not interfere with productivity. Availability on both leading mobile platforms extends reach and facilitates standardisation in organisations with diverse device fleets.