Implementing GDPR compliance program while also taking a business value approach and addressing fundamental data governance needs
May 25th 2018, the GDPR milestone date, is now well in the past. And while GDPR has come and gone, the majority of companies continue to struggle with GDPR. The legal experts will have given their advice, consultants will have created the paperwork but most know with any given organization, that many of the fundamental issues continue to remain:
And the list goes on.
Data Trust Associates have implemented many GDPR programs across the different sectors. And, depending on the sector, the risk tolerance differed. In the case of this Customer, a well-known name in the Utility sector, they had a high demand on compliance with GDPR and to reuse our work across the group which were located in Belgium, The Netherlands, Germany and UK.
Our vision for GDPR compliance is that its principles should be at the core of any business project involving personal data. While most GDPR programs were initiated by a Legal or Compliance Team, the focus is rarely on data governance and implementation of technology to automatically enforce many of the principles that the legislation stipulates. Our 360° approach to the implementation of a GDPR Program contains the following key elements:
This involves the organization (people), the processes and surrounding environment and the technology environment capable of supporting compliance to GDPR
Most organizations do not make the link with ongoing GDPR compliance and the need to have a data governance structure in place, even if it is basic. Also, the majority of organizations think that once the project is finished, it’s done and forget the fact that:
Our approach to addressing these and many other challenges is to provide:
Apart from these services, our constant mantra is to put basic data governance in place and to address the key issues from that perspective. This helped to take the pressure off of the legal teams and distribute it across the organization which involves IT, Business, Marketing, Finance and HE departments
(key performance indicators)