New Articles

Four Benefits of GDPR for Your Organization

Companies with shipments of export cargo and import cargo in international trade need to comply with GDPR.

Four Benefits of GDPR for Your Organization

With less than 50 days to go until the May 25 GDPR compliance deadline, many organizations are hurriedly preparing their data, processes and procedures. While the high fines are ringing in everyone’s ears providing a constant reminder to comply, we think there are a number of positives that can be taken from the regulation.

Greater transparency is going to the key to the success of your GDPR strategy. This will ensure that both your colleagues and customers understand their rights and document how you process/handle their data. By being more transparent you will help to build trust with both your staff and customers as they know their data is being used in an open, lawful and honest manner.

Data is the heart of the GDPR. We think the process undertaken to review and clean your data estate and remove out of date/un-unused data will leave the organization with high quality data that you can rely on for decision making. Clean data will not only help you to target new customers more accurately, respond to SAR requests quicker, maintain ongoing readiness with regulations and build on the company’s reputation for good practice with current and future customers, partners and investors.

Processes and policies need to be reviewed and, in some cases, re-written to ensure readiness. Take the time to review your internal processes – for example, is there a better and more efficient way you can process data? Are there new processes you can put in place to help streamline how your organization operates? Undergoing this process can have unforeseen benefits – who knows, maybe you will uncover a new competitive advantage!

Rights. Under the GDPR data subjects have six new rights to their data, including but not limited to the right to be removed, the right to access a copy of the information and the right to prevent processing for direct marketing etc. Responding quickly and efficiently to these requests before the 40-calendar day maximum will satisfy both your data subjects and the regulators and help you to improve overall customer satisfaction.

We believe organizations of all sizes should stop fearing the GDPR and seeing it as laborious task, and instead start to see the many advantages created by the readiness process.

Jennifer Jones has been working within the data discovery technology sector for over five years, helping organizations to realize the potential of their data. Connexica is a company passionate about creating next generation data discovery solutions that meet ever-changing needs and challenges.

Companies with shipments of export cargo and import cargo in international trade need to comply with GDPR.

The Ultimate GDPR Checklist

There are only six months to go until the May 25 compliance deadline for GDPR, the General Data Protection Regulation—the EU’s comprehensive data protection measure. To help you get the ball rolling we have produced a quick start guide to get you to start thinking about your GDPR strategy and what you need to do to ensure you are ready prior to May 25.

Appoint a Data Protection Officer (DPO). Determine whether your organisation requires a DPO. Even if you don’t need one it’s a good idea to make one person/team responsible for data governance to help ensure you stay ahead of any potential changes to your responsibilities.

Understand and inform. Ensure you and all members of your organisation understand the new rules and regulations that fall under GDPR, and that everyone understands their roles and responsibilities.

Analyze your data. Review the data you hold, which data is considered personal or sensitive data, where that data is located, what you do with the data, who has access to the data, etc. Build a data inventory with a single data management system to easily understand your data estate.

Procedures and processes. Evaluate your current privacy policies and identify areas where these may need to be updated. Complete a privacy audit with either internal resource or through an external provider.

Data access rights. Identify your current policies for data access rights and document how changes should be handled. Ensure that all data processing activities have a clear legal basis for processing.

Data subject consent. Review current processes for seeking, obtaining and recording consent– ensure that where appropriate you have consent from data subjects for processing activities, and whether that consent is still valid under the GDPR.

Children’s data. If applicable implement new practices for age verification and guardian consent when processing Children’s data. Ensure that children’s data is processed with the highest level of security in accordance with the GDPR.

Data breaches. Implement a procedure for your organisation to detect, investigate, handle and report on data breaches. Conduct data breach tests internally to stress test whether your procedures are adequate for GDPR.

Impact assessment. Familiarize yourself with the ICO’s Privacy Impact and Assessments and implement best practices within your organisation. Ensure that your GDPR policies are enterprise-wide and take into account all business activities.

Be prepared. Preparation is key for GDPR; don’t wait until May 25! Start planning and implementing your strategy now.

Jennifer Jones is a marketing coordinator at Connexica.