GDPR – risks, challenges, and opportunities.
New European data protection regulations (GDPR) take effect in 2018. Whilst compelling most data driven organisations to tighten up their processes and activities, used correctly, they also provide new opportunities for businesses.
Customer Attuned offer their help to companies needing to evolve their data management processes and procedures to ensure they work within the new regulations and ensure they gain the best advantages from them.
The GDPR enshrines within its regulations the most recent data protection principles, including but not limited to: –
- the right for individuals to opt in to communications they choose to receive
- a ‘right to be forgotten’
- a right to receive a detailed data report on information held upon him or her
as well as a general tightening of regulations concerning the handling of personally identifiable information (PII).
The regulations will affect both the technical data management functions of organisations and the marketing and communication activities, that is those who use the data in the organisation.
Because of the new legislation, the way we view personal data is going to change – organisations will be custodians of much of the data they hold, not owners. The challenges around GDPR are therefore far-reaching and diverse.
The regulation applies to current, legacy, and new data as it’s collected and stored.
Accountability runs throughout the principles listed above and organisations have explicit responsibility to be able to demonstrate that they comply; the measures you take must include:
- Implementation of appropriate technical and organisational measures
- Documentation of processing activities
- The appointment of a Data Protection Officer (DPO) where appropriate
- Data Protection, measures for which could include:
- Data Minimisation
- Continual security improvements
- The use of Privacy Impact Assessments (PIA’s) where appropriate
Whilst the fines and liabilities for non-compliance are difficult to ignore, one should also note the reputational damage that could result from the publication of a breach and/or non-compliance.
How Our Services Help
Customer Attuned has identified that many organisations are slow to prepare for the new regulations, and has developed an audit process which will help both the IT and business functions to establish how their current processes fit against the new regulations, and hence the gap that needs to be filled for the organisation to be compliant.
Customer Attuned works to a proven template focused on the three key stages of Assess, Recommend, and Implement.
In our GDPR audit we will:
- Assess your organisation’s capabilities against the current view of GDPR
- Company-wide technical and business
- Specific CRM / communications focus
- Recommend actions
- To mitigate or eradicate risks
- To take advantage of opportunities
- Provide you with a route map and offer assistance with implementation
How our GDPR Readiness Assessment will help you
Dependent upon your specific areas of activity, and our findings, the report provided will include detailed recommendations for action. These typically include: –
- GDPR Readiness Assessment with gap and risk analysis
- Recommendations for mitigating and/or eradicating risk
- Recommendations for technical and system upgrades required to enable more effective data handling under the regulations, for example;
- the need for consistent management and linking of PII data
- any updates required to ensure a ‘Single Customer View” of an individual’s data can be made available to reply to Data Subject Access requests
- Recommendations for changes to sales, marketing and communication practices covering in/opt out, seeking permissions, and utilising stored data
Identification of opportunities with real business value
CHOOSE A SERVICE
Our Services help you maximise value, optimise satisfaction and minimise account attrition: