Over the past six months your LinkedIn feed will have told you that GDPR is coming and that you and your compliance, audit and IT teams have a myriad of actions to meet the forthcoming Regulation. But where’s the upside?
Rather than focus on fear, uncertainty and doubt, we like to emphasise advantages. At the heart of successful GDPR compliance is data management, and data management brings with it some tangible opportunities for your business – from getting your data in peak condition to delivering an even greater customer experience.
Under GDPR, individuals have the right to Data Portability. This means that you must provide individuals with the ability to obtain and reuse the data you hold on them across different services (for example, allowing individuals to securely port data to cost comparison sites).
Using Big Data and Machine Learning data management capabilities, you’ll be able to discover and segment your data assets easily, setting your business up to provide individuals with the ability to leverage the data you hold for their personal benefit – and providing you with extra customer loyalty points in the process.
The Right to be Forgotten
If an individual really wants nothing to do with your organisation any more, then under GDPR they have the right to be forgotten. So, if an individual asks you to ‘forget’ them, you are obliged to delete any personal data relating to them where there is no legal reason for its continued processing. This can extend to the sharing of this data with third parties.
Putting in place a process that will enable you to rapidly pinpoint the relevant data and remove it means that rather than dreading requests, they become the trigger for a swift operation that can be carried out with confidence.
With an automated approach, this activity removes the traditionally tedious manual exercise and becomes low-impact to the business delivering a straightforward process to the individual. It also provides you with the added benefit of removing data that is no longer useful.
Data breaches create havoc for individuals and organisations and generate headlines that can lead to enormous reputational damage. A key benefit to undertaking a thorough data discovery and management exercise in preparation for GDPR is the additional security this will bring to your organisation:
- Data discovery will help you to find unstructured (or ‘hidden’) data. It is not unusual to find up to 10GB of unstructured data per employee. Removing this creates TB of space in your infrastructure and allows you to actively address security risks.
- Intelligent classification will enable you to make sure all sensitive or confidential data is appropriately segmented and subject to correct security procedures.
- Data management processes powered by Machine Learning and Big Data principles will allow you to automate tasks that could historically be open to human error.
By taking a proactive approach to security, you’ll be able to find and address weaknesses early giving you a story that will increase customer confidence.
Freedom of Information / Subject Access Requests
Whether a public authority with an obligation to respond to Freedom of Information requests, or a private sector company with obligations under GDPR, the ability to rapidly and consistently handle requests for information from individuals is crucial for compliance.
Addressing this with manual methods is time consuming and costly. By implementing data discovery, intelligent classification and data management protocols using software, this task becomes near-automated and does not disrupt day-to-day business.
One of the ways in which many organisations are benefitting from an early approach to GDPR compliance via data management is their ability to create a detailed data inventory. We liken it to the rigour that organisations apply to managing their finances. By establishing a baseline of your data assets, classifying them appropriately, discarding duplicated data, then setting processes in place for ongoing management, you have a data set that is accurate on a near real-time basis. This delivers a raft of data-centric business benefits:
- Insight into a single view of the customer
- Insights into customer / supplier behaviour
- Accurate reporting
- Insights into opportunities to streamline / automate processes
This is just a summary of how we believe taking a proactive data-centric approach to GDPR could benefit your business. To find out how you could achieve manageable data in moments, either download our whitepaper here: http://bit.ly/ExonarGDPR or drop us a line at firstname.lastname@example.org