Are you ready for GDPR? Enforcement of the EU’s General Data Protection Regulation (GDPR) comes into effect on May 25, 2018, and most companies are by now launching projects to establish enterprise data management (EDM) control processes. Failure to comply with the list of new rules regarding data security and privacy will be costly as GDPR imposes strict fines and penalties for organizations found to be in non-compliance.
GDPR requires companies to provide controls over the information they hold about people and requires that personal data be protected from misuse and unauthorized access at every stage in its lifecycle. With the GDPR enforcement date of 25 May 2018 looming, organizations are required to implement new data management processes or be subject to heavy fines.
To help companies prepare Solix is launching GDPR solutions based on the Solix Common Data Platform (CDP). Solix CDP is an application and compliance framework for enterprise archiving and data lakes. Key capabilities include uniform data collection of structured and unstructured data, data governance, data security and access control.
The Solix CDP supports the following GDPR requirements:
- Data Protection by design: Personal data must be protected from misuse and unauthorized access at every stage in its life-cycle.
- The right to be forgotten: Individuals have the right to request deletion of all their PII data. Organizations must comply with such requests within a reasonable time.
- Data transfer and portability: Individuals have the right to move their data to another provider upon request. The data should be made available in industry acceptable format in a safe and secure way, without hindrance to usability. Additionally, organizations must restrict the transfer of PII data outside of the EU.
- Data processing and profiling: Processing of personal data is limited to explicit permissions given by the individual. Profiling should be explanatory and should avoid any bias.
- Integrity and availability: Organizations must maintain data accuracy and restore access to personal data quickly, following an outage or failure.
- Accountability: Log and provide audit trails for all data consents, collection, updates, processing, and deletion.
- Gartner says that by the end of 2018, more than 50% of companies affected by GDPR will not be in full compliance with its requirements.
Here are resources to learn more about GDPR and the readiness of your organization:
Check out our new GDPR white paper.
Contact us for an on-site GDPR assessment:
Take a blind online assessment of your GDPR readiness.