Connect. Learn. Share

Blog > August 2017 > GDPR Requires Cleaning, But Doesn’t Have to Be a Chore

GDPR Requires Cleaning, But Doesn’t Have to Be a Chore

Our homes, like many things in life, require regular cleaning and maintenance. You may have family coming to visit, a lawn in need of manicuring, or a repair project started, yet not finished. 

The General Data Protection Regulation (GDPR) is right around the corner, and unlike the items you’ve shoved in the closet, these regulations require your immediate attention.   To be in compliance, you will need to clean house and comply with a set of rules that define exactly how you’ll keep it clean.

Organizing your data is an important first step.  It is not unlike sorting through old books and magazines.  Which ones will you really read? If you don’t read them, toss them!  With data, you need to look through your data estate; find the personal data you have collected; and understand how you collected it, what consent do you have to use it and how it is actually used.  If you are not using it, delete it. Not only is it messy to keep what you don’t need, but keeping unneeded data may also increase the risk of non-compliance.

Cleaning up is the start, but with the GDPR, you have to keep things orderly. You’ll likely need to change internal and external processes to maintain compliance.  Your staff will need education in the regulation. 
 

99 articles in the GDPR define the housekeeping requirements from the consent you need to collect and use data to the rights of protected individuals. 
 

You’ll need to consider how you obtain consent when you collect personal data and how you store it. You’ll also need to implement workflows to respond to protected individual’s requests to know what you know about them, to update it, to move it, and possibly to erase it. 

Remember, tidying up the mess – your data – is the start, but if you don’t set boundaries for those who live in the house – data governance – it will return.  That can lead to non-compliance.
 

ASG Technologies and the A-Team Group recently conducted a survey of data management and data privacy executives at a range of financial institutions operating in the UK, Europe and the US. They found that most respondents know visitors are coming and are making plans for the cleanup and the processes needed to keep the house clean.  While only 13% of respondents said they were very prepared for the GDPR, 40% said they were somewhat prepared.   Only 13% said they were still planning and had not yet taken action. In addition, 73% said that identifying and sustaining private data would be very difficult or somewhat difficult.
 

While your housework requires hardwork and helping hands, GDPR preparation doesn’t have to be a chore.  Fortunately, technology is here to help.
 

Respondents to the A-Team Group’s survey were asked about these capabilities and identified incident analysis and reporting, data lineage, and data retention/management as the top three functional requirements needed to support compliance. 

ASG Technologies’ Enterprise Data Intelligence solution and Content Solutions services provide important capabilities such as data lineage and governance, retention management and redaction of personal data that can support compliance initiatives.  Find out more at here.

Please see the entire A-Team survey for much more about the state of GDPR-readiness and how respondents are planning to comply.  You can find the full report here.

Posted: 8/16/2017 11:40:46 AM by Rob Perry | with 0 comments
Filed under :compliance, GDPR, Perry, preparation, readiness, regulations, Rob


Comments
Blog post currently doesn't have any comments.
Subscribe