Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

GDPR: 20 Million Reasons to Get Ready - Part 2: Living Compliance

202 views

Published on

Though the majority of organisations will spend plenty of time preparing for GDPR, it’s crucial they consider actually living the regulation. May 2018 is not the end of the need for compliance, it is the beginning. With preparation putting in the foundation for a data subject hub, organisations now need to focus on efficiency in fulfilling the data subject access rights. In this session, we will go into what it means to live GDPR compliance with topics like self service and what it needs to be secure be design.

Published in: Business
  • Be the first to comment

  • Be the first to like this

GDPR: 20 Million Reasons to Get Ready - Part 2: Living Compliance

  1. 1. 1© Cloudera, Inc. All rights reserved. GDPR: 20 Million Reasons to get ready Part 2: Living GDPR compliance
  2. 2. 3 Your speakers today Colm Moynihan Partner Presales Manager EMEA colm@cloudera.com Nick McHugh MDM Product Specialist nmchugh@informatica.com Graham Thomas Senior Director GDPR Solutions graham.thomas@cognizant.com
  3. 3. 4© Cloudera, Inc. All rights reserved.
  4. 4. © 2018 Cognizant5 Experience from our clients: Living GDPR – go live! If you are consumer facing have you looked at your customer experience? Do you know what systems you are getting the personal data from? Are you ready with your Data Processors for when Data Subject Rights Requests are made? General Data Protection Regulation (GDPR) legislation goes live on the 25th May 2018 Has your Business & IT planned how to handle Data Subject Rights Requests, Data Breach, Consents etc.? Do you have retention and deletion policies and capabilities in place? Are you logging activity? What if you were audited?
  5. 5. © 2018 Cognizant https://20millionreasons.com/ Companies with over dependency on manual processes and systems may struggle to align end-user experience with digital mandate 6 What happens when end-users take control of their data? Potentially 200,000+ Data Subject Access Requests / month 2-3 Data Subject Access Requests / month
  6. 6. © 2018 Cognizant https://20millionreasons.com/7 Prepare to Live (P2L) GDPR 2 GDPR Prepare Live
  7. 7. © 2018 Cognizant https://20millionreasons.com/8 Cognizant’s GDPR e2e capabilities are relevant for May 2018 and beyond Overall Readiness & IT Systems Assessment Data Architecture & Data Flow Mapping Technology & Security Assessment & Gap Analysis GDPR Workflow Analysis & Automation Education & Training Breach Management Governance & Business Process Alignment Consent & Rights Management Solution PoCs Solution Design Solution Implementations An Ongoing Defensible GDPR Position GDPR Innovations
  8. 8. 10 Part 2: Living GDPR compliance
  9. 9. 11 Your speakers today Colm Moynihan Partner Presales Manager EMEA Nick McHugh MDM Product Specialist
  10. 10. Structured Unstructured Governance and Lineage Register of Processing Activities Enacting RightsConsentAccess Requests Explicit Consent Parental Consent unambiguous Current Proof Removed Self Service Timely Recorded Purpose Processors Rectification Erasure Restriction Object Timely Proof GDPR Go Live Phase Cyber Security
  11. 11. What are the Challenges?
  12. 12. CRM ERP AnalyticsMarketing HR Billing Articles (6) Lawfulness of Processing (7) Conditions for Consent (15) Right of Access (16) Right to Rectification (17) Right to Erasure (21) Right to Object What are the Challenges?
  13. 13. Articles (6) Lawfulness of Processing (7) Conditions for Consent (15) Right of Access (16) Right to Rectification (17) Right to Erasure (21) Right to Object Meeting the Challenge CRM ERP AnalyticsMarketing HR Billing Subject
  14. 14. 16 Advantages of a Subject Master Subject Campaign Management Data Lakes Self Service CRM Wanted Accurate Targeted Compliant Accurate Trustworthy Open Reduced effort Trustworthy Accurate Customer service Data Subject 360
  15. 15. Structured Unstructured Governance and Lineage Register of Processing Activities Enacting RightsAccess Requests ConsentData Subject 360 Central View Lineage Relationships Accuracy Lawful Processing Explicit Consent Parental Consent unambiguous Current Proof Removed Self Service Timely Recorded Purpose Processors Rectification Erasure Restriction Object Timely GDPR Living Phase Cyber Security GDPR Data Subject Hub
  16. 16. Access Request & Consent at Scale Web / Mobile App GDPR Data Hub Informatica SRC Master Subject and Consent All data Access Request ‘Download all’ request All GDPR data Web / Mobile App What data & why Purposes, categories Consent
  17. 17. Right to Rectification Informatica SRC Master Subject and Consent All data EU citizens GDPR Data Hub Rectificatio n
  18. 18. Right to be forgotten at scaleErasure Web form Delete, Archive or Mask at source Delete Lineage to source metadata manager EU citizen Request GDPR Data Hub Orchestration Workflow Look up Data Subject
  19. 19. Full-text search All data searched Emails, PDF, Structure data, messages Use search to ensure everything was deletedProof
  20. 20. METADATA MANAGEMENT DISCOVERY & PROFILING STEWARDSHIP & CURATION DATA/BIG DATA INTEGRATION DATA MASKING REAL TIME INTEGRATION DATA QUALITY MASTER DATA MANAGEMENT DATA MAPPING & TRACEABILITY ACCOUNTABILITY & STEWARDSHIP DATA ACCESSIBILITY Data Subject 360 RIGHTS & CONSENT MANAGEMENT Customer360 Data Hub DATA ANALYSIS SEARCH ANONYMYZATION & PSEUDONYMYZATION DPO EU citizensData Stewards Employees GDPR Data Hub: Time is Running Out – Act Now
  21. 21. • GDPR affects all Global Enterprise Business with EU Citizen Data • Cloudera/Informatica have solutions that can help • Automate SARs, Consents, Enacting rights • Opportunity to become a trusted brand (respect rights) • Drive new customer insight, loyalty, upsell and cross sell with consent If you would like to know more we would be happy ….. Email Cloduera – gdpr@cloudera.com Email Informatica – ukinfo@informatica.com Or Visit – https://20millionreasons.com/ Call to action
  22. 22. 24© Cloudera, Inc. All rights reserved. Thank you
  23. 23. © 2018 Cognizant https://20millionreasons.com/25 What happens after 25th May? Most companies will be on their GDPR Journey. May 25th is a milestone, not the project end date. There is a lot to do after May 25th. To go from inefficiently compliant to efficiently compliant. Clients should look at the potential “Return on Investment” of GDPR and the opportunities it brings.
  24. 24. © 2018 Cognizant https://20millionreasons.com/26 The GDPR solution for an enterprise is a journey Core Compliance Value Proposition Automation Full Digitization Incorporate other regulations e.g. PSD2. ePrivacy Map to overall digital strategy with incorporate of AI, IoT, free movement of data. GDPR Readiness Assessment + GAP Analysis Solution Design + Implementation GDPR MVP 1.0 GDPR 2.0 Iterations Iterations May 2018 is a milestone in the GDPR / Digitization journey Overall change management programme to reach a defensible position by May 2018 & beyond Education & Training Technology Assessment and Solutioning Business Process Alignment & Management Threat Detection and Remediation
  25. 25. 27© Cloudera, Inc. All rights reserved.
  26. 26. 28 Your speakers today Colm Moynihan Partner Presales Manager EMEA colm@cloudera.com Nick McHugh MDM Product Specialist nmchugh@informatica.com Graham Thomas Senior Director GDPR Solutions graham.thomas@cognizant.com
  27. 27. 29© Cloudera, Inc. All rights reserved. Thank you

×