Upload
darek-czuchaj
View
69
Download
0
Embed Size (px)
Citation preview
In relation to exiting EU privacy laws GDPR is
• far more complex
• going trough different structures and
business processes
• will be supplemented by other regulations / laws
10/06/2016 3
The GDPR – new regime for data protection in Europe
• Motivated people
• Time
• Good project methodology
• agility
10/06/2016 4
Your GDPR project will require…
Implementation of GDPR can be a chance to:
• Discuss new business concepts based on data processing
• Fix or tweak broken business processes • Introduce agile type of working internally or
with the clients
10/06/2016 5
On the other hand…
10/06/2016 7
The game/mine field…
Board IT
Marketing/
sales
HR
IT vendors Group
companies
ABI / DPO
Business
partners
Legal &
Compliance
Steering
Committee
Working
group Advisors Law firms
10/06/2016 8
Why people don’t love compliance projects…
• They are busy with their current job
• Compliance projects last long – no visible
effects
• They feel thay have nothing to say • No personal motivation (time to change that!)
10/06/2016 9
How to encourage people to work with you
• Find Local Leaders • Give them power / make them work
collaboratively • Ask them what you can fix „with them for them”
as a by-product
10/06/2016 10
Make sure you are visible within the firm
• Brand your project • Make people know & talk about it
• Communicate why do you believe it’s important • Celebrate progress !
10/06/2016 12
GDPR – STEP 1 – THINGS YOU CAN DO RIGHT NOW
• First to:
• Get at least one of the C’s on the board
• Identify people you want to work with
• Identify areas which will likely be subject to a
change
10/06/2016 13
GDPR – STEP 2 – MORE DETAILED SEARCH
Second step:
• Identify your current compliance level
• Identify new processes you need to cover (e.g. Data Breach Notification)
• Talk to the Business Process Owners
10/06/2016 15
GDPR – STEP 3 - IMPLEMENTATION PHASE
• Implementation
• Priority for most crucial processes
• Tracking the goals
• Change management