ARCHIVED CONTENT
You are viewing ARCHIVED CONTENT released online between 1 April 2010 and 24 August 2018 or content that has been selectively archived and is no longer active. Content in this archive is NOT UPDATED, and links may not function.
 


Extract from article by Mark Webber and Hannah Blake

With the implementation of the EU General Data Protection Regulation (GDPR) less than a year away being ‘GDPR ready’ is a key focus for many organizations. But this task is one which extends beyond the privacy or compliance team, it requires the involvement and cooperation of the organization to take compliance with the GDPR from theory to practice.

Even those who’ve pushed through data mapping are starting to realize: it’s one thing to have a core privacy team on top of GDPR, but a mammoth task operationalizing the GDPR throughout an entire organization.

To help, here we provide the top 10 steps to operationalise the GDPR in your organization.

  1. Understand your organization’s governance – rally support!
  • Key stakeholders

If the highest level of management within an organization sets privacy as a key priority it will help to set the tone of privacy in your organization. They could even go as far as to implement a privacy strategy or make a privacy mission statement. Involvement and support at this level will promote and push forward the compliance process, encouraging involvement and education of employees and assignment of tasks. Maintaining such a policy will dictate privacy’s involvement in day to day operations.

In other businesses, we see other compliance champions.  Sales guys love to sell and if they feel deal friction from privacy and Q2’s figures are suffering because of Article 28 you can bet they want to smooth that process and perhaps even lead and sell with compliance.  Seek out those impacted and build a coalition.

  • Key individuals

In addition one of the first key questions your organization should ask when looking at their governance structure is ‘Does this organization need a Data Protection Officer (DPO)?. This is a key role under the GDPR and unless it is obvious that your organization does not need to appoint one an organization should document the reason for its decision.

Everyone within an organization has various specialisms related to privacy and responsibility should be assigned accordingly to create a network of people who manage the day to day impact of privacy within your organization. A clear and coherent governance structure will ensure a smoother transition to GDPR compliance.

Additional Reading:

 

Have a Request?

If you have information or offering requests that you would like to ask us about, please let us know, and we will make our response to you a priority.

ComplexDiscovery OÜ is a highly recognized digital publication focused on providing detailed insights into the fields of cybersecurity, information governance, and eDiscovery. Based in Estonia, a hub for digital innovation, ComplexDiscovery OÜ upholds rigorous standards in journalistic integrity, delivering nuanced analyses of global trends, technology advancements, and the eDiscovery sector. The publication expertly connects intricate legal technology issues with the broader narrative of international business and current events, offering its readership invaluable insights for informed decision-making.

For the latest in law, technology, and business, visit ComplexDiscovery.com.

 

Generative Artificial Intelligence and Large Language Model Use

ComplexDiscovery OÜ recognizes the value of GAI and LLM tools in streamlining content creation processes and enhancing the overall quality of its research, writing, and editing efforts. To this end, ComplexDiscovery OÜ regularly employs GAI tools, including ChatGPT, Claude, DALL-E2, Grammarly, Midjourney, and Perplexity, to assist, augment, and accelerate the development and publication of both new and revised content in posts and pages published (initiated in late 2022).

ComplexDiscovery also provides a ChatGPT-powered AI article assistant for its users. This feature leverages LLM capabilities to generate relevant and valuable insights related to specific page and post content published on ComplexDiscovery.com. By offering this AI-driven service, ComplexDiscovery OÜ aims to create a more interactive and engaging experience for its users, while highlighting the importance of responsible and ethical use of GAI and LLM technologies.