- 纽约
- 2017年10月17日,
New York, October 17, 2017 – Global organizations are working quickly to ensure they will be in full compliance with the General Data Protection Regulation (GDPR), which goes into full effect on May 25, 2018. There is no deadline extension and penalties for non-compliance are significant: up to 4% of annual global revenue. Collibra, the leading data governance software platform for business users, today shared recommendations for avoiding six common GDPR pitfalls that can impede compliance.
The GDPR focuses on protecting the personal data of European Union citizens. But it’s not just EU companies that need to concern themselves with GDPR compliance. Any organization across the globe that collects data about EU residents must demonstrate compliance.
“Ensuring GDPR compliance is no trivial matter, nor an initiative that can be cobbled together in just a few weeks,” said Felix Van de Maele, co-founder and CEO for Collibra. “It’s essential that organizations act now to prepare to be fully GDPR compliant, otherwise they risk not only major financial penalties but reputational damage. Collibra is playing a critical and expert role in helping our customers leverage data governance as a framework to help ensure consumer data remains safe.”
Here are six common GDPR compliance pitfalls, along with ways to ensure they don’t hamper your company’s compliance efforts:
1. You Haven’t Engaged Legal Counsel
With a compliance deadline less than a year away, having experienced legal counsel onboard is critical to ensure your organization is fully compliant with the complex GDPR legislation. While it’s tempting to think your organization can go it alone, legal counsel isn’t a luxury but a necessity.
2. You’re Not Looking at GDPR Holistically
GDPR isn’t just about identifying and securing data, so it requires the full participation of stakeholders across the organization. These stakeholders include business managers, data teams, IT, human resources, and the C-suite.
3. You Haven’t Made an Inventory of Your Business Processes
Understanding how data moves across and beyond your organization is a critical component of GDPR. You’ll need the participation of business units to document the kind of data you collect or process, understand where that data lives and how it’s used, and identify who is responsible for that data and who has access.
4. You Are Not Accounting for Shadow Systems
More than 80% of IT professionals say their end users have implemented unauthorized cloud services or other software in their organizations. This is a growing problem in today’s age of the consumerization of IT, BYOD programs, and the rise of cloud technologies. Take the time now to account for shadow systems and meet with users from across the business to understand what tools they use and why.
5. You Rush to Encrypt Your Data
While encryption can be a valuable tool, it’s not, in and of itself, a complete solution. While encryption has its attractions, it is fundamentally a technical solution that does not address the human factor: how to control access in a way that protects personal data while providing legitimate data users with the information they need to do their jobs.
6. Your Organization Lacks Skills Specific to GDPR
The right expertise will help your organization interpret regulations, assess your readiness, implement a data protection program, and monitor your compliance journey. While hiring specialized talent can help, cultivate the talent you have since they’re the ones who know your business – and your data – best.
To learn more about these GDPR pitfalls and recommendations on how to overcome them, download the new Collibra e-book, “6 GDPR Compliance Pitfalls (and How to Avoid Them).”
About Collibra
As the leader in data governance, Collibra helps organizations across the world find, understand, and trust their data, and gain competitive advantage by maximizing the value of their data across the enterprise. Collibra is the only solution purpose-built to address the gamut of data stewardship, governance, and management needs of the most complex, data-intensive industries. Our flexible and configurable cloud-based or on-premises solution puts people and processes first – automating data governance and management to quickly and securely deliver trusted data to the business users who need it. Learn more at www.dapouch.com.
Media Contact:
Colleen Irish
617-842-1511
cirish@tieronepr.com
-
随着全球组织准备GDPR截止日期2018年5月,Collibra股票建议避免常见的合规陷阱新万博移动客户端
纽约,2017年10月17日—全球组织尽快工作,以保证他们将完全符合一般的数据保护监管(GDPR),进入全面影响5月25日,2018年。没有期限的延长,处罚违规意义重大:年度全球收入的4%。新万博移动客户端Collibra,领先的数据治理软件平台为业务用户,今天分享的建议避免六个常见的GDPR陷阱可以阻碍合规。
GDPR关注保护欧盟公民的个人资料。但这不仅仅是欧盟企业需要关心GDPR合规。任何组织在全球范围内收集的数据必须遵守欧盟居民。
“确保GDPR合规是没有小事,也没有一个计划,可以拼凑起来在短短几周,”菲利克斯Van de Maele说,Collibra联合创始人兼首席执行官。新万博移动客户端“这是必不可少的组织现在行动准备完全GDPR兼容,否则他们不仅主要经济处罚,声誉损失风险。新万博移动客户端Collibra发挥重要和专家的角色在帮助客户利用数据治理作为一个框架来帮助确保消费者数据仍然是安全的。”
这里有六个常见GDPR合规陷阱以及方法来确保他们不要妨碍你公司的合规工作:
1。你没有从事法律顾问
合规期限不到一年了,经历过法律顾问上是至关重要的,确保您的组织是完全符合复杂GDPR立法。虽然它可能会认为自己的组织能单干,法律顾问不是奢侈品,而是必需品。
2。你不是看着GDPR整体
GDPR不仅仅是识别和保护数据,所以它需要跨组织的利益相关者的全面参与。这些利益相关者包括业务经理、数据团队,人力资源和管理层。狗万新闻c
3所示。你没有库存业务流程
了解数据移动,GDPR超出您的组织是一个关键组成部分。你需要业务部门的参与,记录的数据收集或过程,理解数据住在哪里和如何使用它,并确定谁负责,谁有权访问数据。
4所示。你不是占影子系统
超过80%的IT专业人员说,他们的终端用户实现了未经授权的云服务或其他软件在他们的组织。这是一个日益严重的问题在今天的消费化的时代,BYOD项目和云计算技术的兴起。花时间现在占影子系统和与用户业务理解他们使用什么工具和为什么。
5。你急于加密数据
虽然加密可以是一个有价值的工具,但它不是,就其本身而言,一个完整的解决方案。虽然加密有其诱人之处,但它本质上是一个技术解决方案,并没有解决人类的因素:如何控制访问的方式保护个人数据,同时提供合法数据用户提供他们需要的信息来完成他们的工作。
6。特定于GDPR组织缺乏技能
正确的专业知识将帮助您的组织解释规定,评估你的准备,实现数据保护程序,监控你的合规的旅程。虽然招聘专业人才可以帮助,培养的人才因为它们那些最了解您的业务和您的数据。
了解更多关于这些GDPR陷阱和建议如何克服它们,下载新的Collibra电子书”,新万博移动客户端6 GDPR合规陷阱(以及如何避免)”。
关于Coll新万博移动客户端ibra
在数据治理,Collibra帮助组织在世界各地发现,理解,信任他们的新万博移动客户端数据,获得竞争优势通过最大化他们的数据在整个企业的价值。新万博移动客户端Collibra是唯一解决方案专用地址的数据管理、治理和管理最复杂的需求,数据密集型行业。灵活的和可配置的基于云的或本地解决方案使人们和过程——自动化数据治理和管理迅速和安全地交付可信数据业务用户需要它。学习更多在www.新万博移动客户端collibra.com。
媒体联络:
科琳爱尔兰
617-842-1511
cirish@tieronepr.com
