How many municipalities does GEMDAT manage with the Akarion GRC Cloud?

Over 400 Upper Austrian municipalities are centrally managed via the multi-tenant platform.

How does the template system work?

GEMDAT maintains a central template account. Changes are rolled out to all 400 municipalities simultaneously via inheritance logic.

Which modules does GEMDAT use?

Data Protection and Whistleblowing.

Success Story

Top-level data protection for over 400 municipalities

How GEMDAT OÖ efficiently and professionally delivers data protection management for the public sector using the Akarion GRC Cloud.

Detailed documentation for 400+ municipalities

Perfect mapping of processing records, audits, and action recommendations

Enormous time savings through template system

The Customer

GEMDAT OÖ is the leading IT provider for Upper Austrian municipalities. In addition to numerous IT services, the company also acts as an external Data Protection Officer. More than 400 municipalities are supported by GEMDAT, from data protection documentation to annual audits. Especially in the public sector, exemplary data protection and professional GDPR implementation are indispensable.

The Challenge: Supporting 400 municipalities with a uniform standard

As an external Data Protection Officer, GEMDAT supports over 400 municipalities in Upper Austria. The municipalities are largely similarly structured, yet specific tasks vary slightly. The biggest challenge lies in keeping everything current: each municipality requires complete, up-to-date documentation of its processing activities. On top of that, annual audits must be precisely tracked. With conventional tools, this scope was barely manageable anymore.

The Solution: Multi-tenancy, templates, and parallel access

GEMDAT uses the Akarion GRC Cloud with its core features:

Multi-tenancy with inheritance: Over 400 municipalities are managed centrally. Changes to templates can be rolled out to all clients simultaneously via inheritance logic.
Dedicated template account: GEMDAT has built a central template account that serves as the basis for the entire client base. Individual adaptations per municipality remain possible.
Parallel access: The municipality and the external Data Protection Officer access the same data at the same time. No sending of files, no version conflicts.
Whistleblowing module: For municipalities with 10,000 or more inhabitants, GEMDAT additionally provides the whistleblowing system via the Akarion GRC Cloud.

The Result: Higher quality with enormous time savings

The Akarion GRC Cloud has fundamentally simplified GEMDAT's work:

Enormous time savings: Templates are created once and instantly used for 400 municipalities. Updates reach all clients simultaneously.
Quality improvement: Support quality is not only maintained but actually improved through the structured platform.
Everything in one tool: Processing activities, audits, action recommendations, and whistleblowing are bundled in one place.
Trust through certification: For municipalities, it matters that AKARION itself is ISO 27001 certified and listed by the BSI as an IT-Grundschutz tool.

Daniel Holzer

Managing Director GEMDAT OÖ GmbH & Co KG

As the leading IT provider for Upper Austrian municipalities, we need a data protection solution that is practical and intuitive to map the complex structures of public administration. Akarion helps us keep our municipalities' documentation up to date and efficiently conduct annual audits.