Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

EU General Data Protection Regulation: Practical steps for compliance, third party contract management

1,788 views

Published on

The European Union (EU) General Data Protection Regulation (GDPR) took effect May 25, 2018, yet only 34.5 percent of nearly 500 professionals involved in GDPR compliance efforts say their organizations can defensibly demonstrate compliance with the new data privacy rules today, according to a July 2018 Deloitte poll. Further, only 13.6 percent of respondents are confident that their organizations know what data third parties have and are leveraging artificial intelligence (AI) and other technologies to analyze and manage third-party contracts for GDPR compliance. To learn more, go to: https://www2.deloitte.com/us/en/pages/about-deloitte/articles/press-releases/few-organizations-are-gdpr-compliant-eu-data-privacy-contract-management.html

Published in: Business
  • Be the first to comment

EU General Data Protection Regulation: Practical steps for compliance, third party contract management

  1. 1. EU General Data Protection Regulation: Practical steps for compliance Deloitte poll results from June 2018
  2. 2. EU General Data Protection Regulation: Practical steps for compliance Copyright © 2018 Deloitte Development LLC. All rights reserved. 2 Methodology Professionals involved in their organizations’ General Data Protection Regulation (GDPR) compliance efforts participated in a Deloitte Dbriefs webcast, titled “EU General Data Protection Regulation: Practical steps for compliance,” on June 22, 2018. Answer rates differed by question. 490+ EU General Data Protection Regulation: Practical steps for compliance 2
  3. 3. EU General Data Protection Regulation: Practical steps for compliance Copyright © 2018 Deloitte Development LLC. All rights reserved. 3 34.5% 14.1% 18.6% 11.7% Yes, we can demonstrate compliance today No, but we will be compliant in the next three months No, but we will be compliant by the end of 2018 No, we are taking a 'wait and see' approach Can your organization demonstrate a “defensible position” on General Data Protection Regulation (GDPR) compliance? Votes received: 711 Don’t know/not applicable=21.2% 32.7% = Should be compliant in coming months
  4. 4. EU General Data Protection Regulation: Practical steps for compliance Copyright © 2018 Deloitte Development LLC. All rights reserved. 4 Which best describes your organization’s work with third parties as it relates to General Data Protection Regulation (GDPR) compliance? Votes received: 684 Don’t know/not applicable=20.2% 13.6% 37.4% 18.6% 10.2%Not started Starting - we plan to identify what data third parties have soon. Contract management work will come later Building - we're trying to identify what data third parties have and we plan to take a closer look at contract management soon Advanced - we currently know what data third parties have, and we're leveraging artificial intelligence (AI) to create, manage and analyze contracts with third parties
  5. 5. EU General Data Protection Regulation: Practical steps for compliance Copyright © 2018 Deloitte Development LLC. All rights reserved. 5 Will your organization's discovery practices change now that the General Data Protection Regulation (GDPR) is enforceable? Votes received: 611 Don’t know/not applicable=34% 30.6% 17.2% 18.2%Yes - Discovery will be less difficult No change Yes - Discovery will be more difficult
  6. 6. EU General Data Protection Regulation: Practical steps for compliance Copyright © 2018 Deloitte Development LLC. All rights reserved. 6 Does your organization's data privacy program have scalability to address possibly pending rules from other jurisdictions? Votes received: 490 Don’t know/not applicable=32.7% Yes, but we have focused only on GDPR until now, 28.4% Yes, our program incorporates the GDPR, other existing rules for data privacy, as well as the ability to address new rules later if needed, 19.8% No, we focused only on the requirements for GDPR, 19.2% 48.2% of programs have scalability to address possibly pending rules from other jurisdictions
  7. 7. EU General Data Protection Regulation: Practical steps for compliance Copyright © 2018 Deloitte Development LLC. All rights reserved. 7 Media contact Shelley Pfaendler Public Relations Deloitte Services LP spfaendler@deloitte.com Full press release available on Deloitte.com EU General Data Protection Regulation: Practical steps for compliance 8
  8. 8. The statements in this report reflect the aggregation of poll responses and are not intended to reflect facts or opinions of any entities. All data, charts and statistics referenced and presented, as well as the representations made and opinions expressed, unless specifically described otherwise, pertain only to the participants and their responses to the Deloitte poll. The information obtained during the poll was taken “as is” and was not validated or confirmed by Deloitte. This presentation contains general information only and Deloitte is not, by means of this presentation, rendering accounting, business, financial, investment, legal, tax, or other professional advice or services. This presentation is not a substitute for such professional advice or services, nor should it be used as a basis for any decision or action that may affect your business. Before making any decision or taking any action that may affect your business, you should consult a qualified professional advisor. Deloitte shall not be responsible for any loss sustained by any person who relies on this presentation. About Deloitte Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee (“DTTL”), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as “Deloitte Global”) does not provide services to clients. In the United States, Deloitte refers to one or more of the US member firms of DTTL, their related entities that operate using the “Deloitte” name in the United States and their respective affiliates. Certain services may not be available to attest clients under the rules and regulations of public accounting. Please see www.deloitte.com/about to learn more about our global network of member firms. Copyright © 2018 Deloitte Development LLC. All rights reserved.

×