The EU General Data Protection Act, implemented in May 2018, was the most important change in data privacy regulation in 20 years. The regulation changed the way organisations, across every sector and every industry, handle personal and sensitive information. Under the GDPR, organisations now have 30 days to complete a Data Subject Access Request, with substantial fines for failing to comply.
Benefits of GDPR
- Audit and report on GDPR and organisational risk assessment
- Respond to Subject Access Requests quickly and accurately
- Use a library of proven best practice GDPR templates, processes and procedures
- Reduce the potential of legal, financial and reputational risk
- Remove the GDPR drain on valuable resource
To be GDPR-compliant you must have a consolidated view of all the personal and sensitive data your organisation holds and know precisely why and where that information is stored.
An organisation needs to be able to analyse, report on, and act upon data that contains information which your business should not, or does not have relevant consent to, store or process.
Using AI.DATALIFT you can see what data you currently hold, where it is located, and who has access to it. With AI.DATALIFT’s GDPR application, you are provided with over 20 pre-set PII patterns which allow you to easily find personal and sensitive information across your entire data estate.
All this information is surfaced through a core insights dashboard which will allow you to automatically report on risk present in your data and apply a policy to manage it. These policies enable your business to classify consensually-held personal and sensitive data, provide visibility of the security protecting this information, and ensure it is not retained without consent.
As part of the GDPR you will need to be able to surface and classify relevant data quickly to respond to Subject Access Requests and Right to be Forgotten Requests, without impacting your day to day business activities.
It is estimated that one Subject Access Request can take as much as 40 man-hours to complete. Without the right solution, SARs will consume valuable resources to the detriment of organisational growth or other strategic objectives.
When a GDPR Subject Access Request is received, our solution provides workflows to identify, collate and support the sharing of relevant content with the Data Subject within hours, rather than days or weeks.