To truly comply with the new General Data Protection Regulation (GDPR) rules, means being able to see into ALL of the organisation’s data, which will assist in adopting a holistic approach with processes adopted across all industries, geographies and business units and provide a clear strategy on access and classification. Organisations need to know where personal data is stored, in what form it is found and keep track of who is authorised to access it. This can be difficult given today’s fragmented computer systems and networks.
In simplistic terms, the best place to start are looking at the process to support current Subject Access Requests, as these are the foundation for a GDPR request. The following activities need to be captured
Remember data is digital, so keep it digital from start to finish.
If you don’t know what data you hold you can’t comply. Organisations hold vast quantities of data that they do not need or understand. Recent Veritas Databerg Report has found that 85% is “dark” data, or ROT (redundant, obsolete, or trivial). Findings from Veritas’ Data Genomics Index highlighted that 41% has not been touched in three years and expansion of data is an alarming 39% a year, with very little insight. Such rapid growth also increases the risk of security breaches, poor productivity, reduced customer satisfaction and escalating storage costs. In the State of Information Governance 2016 Report 94% of organisations have a formal information governance programme in place or in planning, only 40% are high performers when it comes to being effective with an information governance culture within the organisation and its employees.
Benefits of Compliance
Compliance requires significant investment, but this can be offset to a significant degree,
The new rules can be a vehicle for reform.
Conforming to the new rules means regaining control of data and tuning business processes for better efficiency and effectiveness. It enables a holistic approach that solves the common problem of too much data and too little information. Risk and costs are reduced while improvements are made in business agility, innovation, IT security and innovation. You also protect your brand integrity, demonstrating to customers that you value them and respect their privacy. GDPR is a huge opportunity to build a successful digital business. If you need help on your information compliance journey, then get in touch with us at Veritas.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.