Regardless of your organization‘s size, the pending enforcement of the European Union General Data Protection Regulation (GDPR) in May of 2018 will have a dramatic and fundamental shift on how your organization collects, manages and secures customer-centric data of EU citizens.
CIO recently published a whitepaper entitled “Why Businesses Need To Wake Up To GDPR.” Referencing a delay in preparedness, especially by smaller organizations, CIO outlines how organizations need to become transparent in their collection and management of data.
CIO defines data transparency as a critical factor in achieving compliance. Data transparency, as it relates to GDPR, spans from the consent of the individual citizen’s explicit right to be forgotten as well as their ability to easily withdraw consent. Organizations also need to be transparent in why the data is being collected, how it will be used and how long it is going to be stored by the organization.
While transparency is empowering the EU citizen with greater control of how their personal data is collected and shared, it is demanding that organizations address their fundamental data policies.
Key excerpts from CIO’s whitepaper include:
State of the market: Larger organizations are further ahead than smaller companies in their planning of GDPR readiness.
Time to prepare is short: Judith Vieberink, a Netherlands-based barrister at Attorney First shared, “If you haven’t started, start now.” Understanding data, where it is stored and its value are all necessary steps to achieving GDPR effectiveness.
Security is a priority: Security of data can no longer be an afterthought. GDPR requires that organizations make security a priority. Specifically, GDPR’s “Privacy by design” is a standing principle of the new legislation.
New Roles: The introduction of a Data Protection Officer, or DPO will demand that organizations which are required to have a DPO, begin to identify and hire this individual quickly.
About Micro Focus GDPR Solutions
Micro Focus’s recommended GDPR solutions incorporate both Information Governance and Security products. Information Governance sets the policy for which data is collected and managed throughout its lifecycle. With strict governance policies, organizations will have insight into the data that is collected, helping them to comply with GDPR’s mandate to account for individual’s “right to be forgotten” requirement. Data Security, working in conjunction with governance practices, ensures that the content that contains personal data is properly protected, regardless of its location within the enterprise.
To learn more about GDPR please visit www.GDPRandbeyond.com or contact Micro Focus.
PwC highlighted Personal Data Assessment as a key stage in compliance in a recent white paper, “Technology’s Role in Data Protection – the Missing Link in GDPR Transformation.”
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.