GDPRsimple SaaS Platform
GDPRSimple is a SaaS platform that aides small-to-medium size businesses in managing data privacy after the release of the General Data Protection Regulations in the European Union.
GDPRsimple is a new product helping businesses manage their data protection practices in accordance with the GDPR. With the product businesses can maintain their data policy records in one place as well as generate documentation in accordance with GDPR. The platform also educates companies about data protection matters and best practices.
I initially worked with another UX designer, a project manager as well as two engineers to build a MVP. However, halfway through our set of design-centered sprints my fellow UX designer left our team to work on another project; I then became the UX design lead. As UX design lead I continued working on UX/UI/visual design for new features and led usability testing. This project has spanned several months.
Unfortunately, UX research was not in the project's scope. However, I did perform background research about GDPR to better familiarize myself with the subject matter.
I also did competitive and comparative market research to better understand the functionality of similar SaaS platforms. I mainly examined :
DOCUMENT-CENTRIC V. SUBJECT-CENTRIC
In order to have an efficient wireframing process my co-UX designer and I decided to divide up the work as such: I would work on designing our initial visual concept and low-fidelity wireframes and she would design the medium and high-fidelity wireframes. However, we disagreed on the basic structure for the portal.
My colleague felt GDPRsimple should have a very targeted approach and be oriented around the documents that users would generate. I felt the product should have a more broader tone and be divided into subject-matter areas that housed both document generation as well as learning material.
To find a resolution we conducted a design studio led by our design director. We were able to combine both of our ideas into a single design concept.
In an initial iteration the portal homepage featured a 'My Recent Documents' section that gave users quick access to relevant documents, as well as a secondary navigation menu that allowed users to quickly access specific modules related to sections of GDPR.
In the final iteration the design was further streamlined. A homepage menu was created that integrates notifications and that also directs users to the specific subject-area sections. The left-hand secondary navigation when expanded continues to offer another pathway to access these module sections.
PROJECT PIVOT: LOG BECOMES REQUEST MANAGER
One of the most challenging sections of the portal was the Individual Rights Request Manager, which initially was the Individual Rights Log. The log was meant to be a ledger for companies to track all of the different types of individual requests they would receive from users.
Unprompted, I began to look at the reference material that accompanied this log section. After reading through the material I discovered that there were many steps a business must take in order to properly respond to each individual rights request they receive. Instead of limiting this section to a record-keeping ledger, I pitched that this section should include an interactive checklist to guide businesses thru the steps needed to respond to each request. Thus, our team pivoted and we created an Individual Rights Request Manager.
As UX Design lead I designed all of the mobile wireframes. Due to the nature of the product we decided to maintain the integrity of the experience and maintain onboarding and document generation to only the desktop version of the site. However, users would be able to access reference material, view their document library, and edit their account settings on their mobile device.
I created a script for all of the testing sessions, which included 2-3 tasks and specific usability questions.
Facilitated testing sessions.
I facilitated testing with 6 different participants who were recruited by the client. Testing was done both in person and remotely.
Wrote report with recommendations.
I wrote a summary report that included the main findings from the testing as well as major design recommendations.
The four main recommendations from usability testing were:
Adjusting content. - For many users the language was too formal and overwhelming.
Redesigning the 'Direct Marketing Consent' Generator. - For many users this section, which asks users to complete a form, was not intuitive. Users wanted questions to appear before the form and have the form change dynamically as they answered questions.
Swapping Key Term Highlight For Underlines. - In our design key terms were denoted by a green highlight ; once a user hovered over the highlighted term a pop up would appear with the definition of the word. However, most users did not understand that the highlight signified this affordance. Several testers mentioned being more familiar with the use of an underline to denote interactivity.
Add Examples/Context Directly to Questions. - Users wanted more guidance to answer questions for document generation. Testers wanted more examples presented directly with the questions.
Due to a lack of time, our engineers could not adopt all of the recommendations. However, some changed were made:
The highlight over the key terms were replaced with underlines.
The format for the 'Direct Marketing Consent' generator was altered so that the questions appear first in the section. Users can then see a preview of what the form looks like with their responses integrated.