The set of data of all types that are collected and stored every day by the various departments within a company is what we could call the « information asset » of the company. This asset is the engine on which the company is based to carry out its projects and achieve its objectives.
As part of the GDPR, the technological tools made available inside an organization aim at fulfilling the needs of the stakeholders in charge of privacy within the computer information systems. We can globally discern three types of profiles that will have a role to play in their organization's compliance strategy :
A recap of the GDPR readiness seminar held in Brussels on 7 Feb. 2018.
An event co-hosted by Sari Depreeuw from legal firm Daldewolf and Rever’s own Stéphane Goethals and Jean-François Liénart, all made possible with the help of Icab Incubator’s Marnix Housen.
Will this Christmas be Santa’s last delivery in Europe ?
In order to be able to deliver his gifts to little children every year, Santa Claus must know their names and home addresses. He must keep a personal data register. He probably also stores information such as the children’s preferences…
As a follow-up to the organizational component - namely governance actors (see part 2 of this series) – let's move on to the third pillar of corporate data governance : information asset management.
The new European regulation (aka GDPR) imposes on organizations of all sizes the respect of two major obligations : the protection of the personal data they possess on individuals (customers, prospects, partners…) and the respect of their rights (processing type, legitimate interest, access, rectification, erasure…).