SlideShare una empresa de Scribd logo

GDPR: the IBM journey to compliance

Descargar como PPTX, PDF
DataWorks Summit
DataWorks Summit

As one of the largest processors and controllers of global information, IBM has embarked on a global program towards GDPR compliance readiness. Using the same methodology, services, and solutions as it does with clients, this session will demonstrate how this process can serve as a model for GDPR for any large enterprise. How this model can then be a basis to help comply with all other regulatory needs and be a framework for future business transformation and opportunity. Specifics will include: • A summary to the needs and opportunities of the GDPR regulation • With the time left, where are you, what can still be done • A prescriptive phased methodology of execution • Core solution technical measures and capabilities • Key GDPR actionable outcomes by stakeholder The focus is on discovering, mapping, and managing personal data for GDPR, along with data protection and compliance, on Hadoop in a sustainable way. Speaker Richard Hogg, Global GDPR Evangelist, IBM

Tecnología
1 de 31
Dataworks Berlin GDPR : The IBM Journey to Compliance — Richard Hogg, Global GDPR Evangelist Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation
Richard Hogg Global GDPR Evangelist IBM @banjaxx G- 36 DaysDataworks Berlin / April 19, 2018 / © 2018 IBM Corporation
GDPR Legal Disclaimer Clients are responsible for ensuring their own compliance with various laws and regulations, including the European Union General Data Protection Regulation. Clients are solely responsible for obtaining advice of competent legal counsel as to the identification and interpretation of any relevant laws and regulations that may affect the clients’ business and any actions the clients may need to take to comply with such laws and regulations. The products, services, and other capabilities described herein are not suitable for all client situations and may have restricted availability. IBM does not provide legal, accounting or auditing advice or represent or warrant that its services or products will ensure that clients are in compliance with any law or regulation. Learn more about IBM's own GDPR readiness journey and our GDPR capabilities and offerings to support your compliance journey here. Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation
Simply… Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation GDPR Compliance Data Protection Personal Data
The EU General Data Protection Regulation Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation GDPR From May 25th, 2018 Across 28 EU countries 4% of Global Revenue or €20M Potential Penalty Per-Incident Applies Globally to any Organization working with Personal Data of a Data Subject residing in the EU Or Profiling From the EU 5 Key General Data Protection Regulation Obligations Rights of EU Data Subjects Security of Personal Data Compliance & Legal Basis Accountability of Compliance Data Protection by Design and by Default
Exemplar Types of Personal Data Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation Personal Data: an identifier such as a name, an identification number, location data, online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that person. Sensitive Personal Data: data consisting of racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, genetic data, biometric data, data concerning health or data concerning a natural person's sex life or sexual orientation. The commission or alleged commission by them of any offence; or any proceedings for any offence committed or alleged to have been committed by them, the disposal of such proceedings or the sentence of any court in such proceedings.
5 Phases to Readiness Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation GDPR Framework – Conduct GDPR risk & privacy assessments across governance, people, processes, data, security – Develop GDPR Readiness Roadmap – Identify & Map personal data – Design governance, training, communication, and process standards – Design privacy, data management and security management standards – Develop and embed procedures, processes and tools – Deliver GDPR training – Develop & embed standards & policies using Privacy by Design, Security by Design – Detailed Data Discovery – Execute all relevant business processes – Monitor security and privacy using TOMs – Manage Consent & data subject access rights Identify GDPR impact and plan Technical and Organizational Measures (TOM’s) Includes Data Protection controls, processes and solutions to be implemented TOMs in place: Personal Data discovery, classification and governance in place Begin the new GDPR ready way of working – Monitor, assess, audit, report and evaluate adherence to GDPR standards Assess Design Transform ConformOperate Monitor TOMs execution; deliver compliance evidence to internal and external stakeholders Assessments and roadmap Defined implementation plan Process enhancements completed Operational framework in place Ongoing monitoring and reporting ActivityOutcomePhase
What Is IBM Doing for GDPR Readiness? Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation Our Market Commitment IBM has established a global project to prepare for GDPR, both for our internal processes and for our commercial offerings. IBM recognises that our customers will rely on IBM's offerings and technical assistance to achieve GDPR compliance within their own organisations and IBM is well-positioned to meet this critical need. Our GDPR Readiness Programme GDPR Programme Management Office IBM as a Data Controller Mission: Address IBM’s obligations for managing internal data. IBM as a Data Processor Mission: Ensure compliance and governance for all IBM offerings and services that process personal data. IBM GDPR Common Services Mission: Deploy enterprise tools and common services to facilitate GDPR-related policy, system and business process changes. IBM Vendor Management Mission: Align our supply chain to the upstream obligations we make to our clients and to our internal responsibilities. IBM Client & Contract Management Mission: Help make the client buying process GDPR ready. GDPR Go-To- Market Mission: Create a unified solution to help our clients with their GDPR readiness programmes. IBM has established a global readiness programme tasked with identifying the key impacts of the GDPR across IBM’s business and preparing IBM’s internal processes and commercial offerings for compliance with the GDPR. The programme is organised into several work streams, staffed with IBM’s top data privacy and security professionals. Focal points in each Business Unit are responsible for implementing the GDPR- related policy, system and business process changes mandated by the various key work streams. www.ibm.com/gdpr + new Audit Workstream
Northern Trust Accelerated GDPR Readiness — Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation “The journey we took to know, trust, use our data is now accelerating our readiness to GDPR. • Data cataloging efforts to map sensitive data elements across key applications improved company operations and accelerated our path to be GDPR ready • GDPR is now helping us to advance our metadata for other purposes such as data protection • With good quality data with embedded governance controls, my group is providing better service to my constituents so Northern Trust can better serve its customers.” Sanjay Saxena Senior Vice President of Enterprise Data Governance at Northern Trust
Use your data Build a single source of truth to drive a 360-degree view of your data. Unleash insights and deepen customer relationships. Trust your data Capture lineage, help ensure quality of dynamic data and stay on top of regulations. Know your data Discover, find, integrate, classify and catalog all types of data. Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation
Driving Consumer Engagement, Innovation and Competitive Advantage Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation GDPR 66%of users feel more empowered to share data once it has strong governance enablement* Respect and treat personal data properly Build personalized experience Help Compliance readiness Build brand value & loyalty Source: Lock, Michael. “Data Governance 2.0: Uniting People and Information to Drive Real Business Results, Aberdeen Group, 31 August 2017, https://www-01.ibm.com/common/ssi/cgi- bin/ssialias?htmlfid=IML14586USEN&
Driving Value Beyond GDPR Compliance Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation The Value of Governance Making data cleaner and more trustworthy contributes to a technology environment that is easier to interact with, protecting data, and guiding users toward the data they need to support their decisions. Find-Share-Collaborate − Break down data silos − Make structured and unstructured data available through a self-service model − Turn complex business data into business value − Be proacitve in the face of changing regulatory environment Data Governance 2.0 “Uniting people and information to drive real business Results” (Aberdeen group Study – August 2017)
Opportunities the GDPR Presents to All Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation Reinforcing accountability with your customers Digital engagement and personalisation Improved data management and understanding 1 2 3
Build once. Address many needs. Accelerate innovation. ArchivingRecords and retention Audit readinessSelf-service access to data and analytics Discovery360-degree information driven insights Regulations (such as GDPR) Privacy and protection EDW optimization Trusted Analytics Foundation Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation
AI & ML GDPR Accelerators Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation
Compare and Comply Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation Watson Compare & Comply allows attorneys to load contracts and other data such as regulations from any source and have Watson analyze and consider the key language, clauses or paragraphs driving the need for further analysis or change Watson considers the contractual terms, regulations or other terms and highlights paragraphs / sentences that contain control requirements (implicit/explicit). Users confirm the validity. Visualize how effectively controls have been assessed per regulation GDPR Outcome Creates a range of bespoke reporting to allow a clear view of where remediation is required, with clear traceability back to impacting new regulations, existing regulations or contractual terms. A clear link back to impacting regulation or de-regulation can be seen to support prioritization and discussions with the regulator
Accelerate Taxonomy and Personal Data Mapping via Industry Model Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation Business Taxonomy for Industries mapping each GDPR Terms to business terms & objects, by Article − Consumable for Unified Governance Catalog execution by using IGC Helps pre-define common classes and types of Personal data to find and manage under GDPR − Helps define and accelerate determining which personal data types your business uses − Helps define the examples and methods of finding and managing such personal data GDPR Outcome An immediate re-usable taxonomy and framework of business terms, for what personal data is used in the business, towards a complete Mapping and inventory to a defensible ‘Article 30 Record of Processing of Personal data’ across the business. Marked up GDPR Regulation Supportive Content of all GDPR nouns in IGC Each relevant noun in the text points to equivalent IGC Term Industry agnostic representation of GDPR regulation
Governance Value Beyond GDPR Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation Brand Value & Loyalty Strengthen your brand by defining and publishing ethical standards handling personal data both internal (employees) as external (clients)—a quality necessity for the digital age! Grow revenue, reduce churn and acquisition costs. Become ‘data driven’—Personalized Establish key projects like implementing Data Governance or creating a 360 Client View to transform your organization to be data driven as part of your GDPR implementation. Better customer insight and targeted marketing. Compliance Readiness and Business Productivity Established best practices for stewardship and efficiency of data projects and for confidence in handling future regulation. Show respect & trust for Personal Data Derive guidelines for handling personal data and raise the awareness as part of your organization’s values Records of processing activity Consent Building Block Journey Governance and lifecycle management Assessment Access by the data subject Discovery and mapping
Discovery and Mapping (Art. 4-5) IS EE (IA, IGC), StoredIQ w/Cartridges, Industry Models w/GDPR content Records of Processing Activities (Art. 30) GDPR Template w/IS EE, StoredIQ, Cognos 11 Manage Consent (Art. 4-7) MDM w/ Consent Mgmt & Profiles Governance and Lifecycle Management (Art. 5) IS EE (IGC), Optim TDM & DP / TD Fabrication / Archive, Atlas, StoredIQ for Legal Data Subject Access (Art. 15) IGC, MDM, Atlas, StoredIQ, Optim, Case Manager Analytics GDPR Building Blocks Records of processing activity Consent Building Block Journey Governance and lifecycle management Assessment Access by the data subject Discovery and mapping Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation
Discovery and Mapping Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation Know your relevant data: Understand where personal data resides Define your inventory of Personal Data Discover where Personal Data is stored Reveal ‘shadow’ data stores Process structured and unstructured data and store results in a common catalog Leverage GDPR specific content in Industry Models and GDPR Cartridges for StoredIQ (RegEx & ML) 1. Articles 4-5 Information Analyzer for Structured Data StoredIQ for Unstructured Data Industry Models for Business Vocabulary Conformance Information Governance Catalog
Extensive Personal Data Discovery with GDPR Cartridges Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation Plug-in discovery accelerators to find a more extensive set of EU citizen personal data − Maximising the use of RegEx strings − Leveraging Machine Learning Annotators to auto-discover personal data entities such as Names, Addresses, Countries that can’t be defined or found by RegEx − Tailorable & extensible by clients Proven enterprise-scale capability to assess in-place the common sources and types of unstructured information − Heatmap view to prioritise Where Personal information has been found − Actionable outcomes and exports of specific data types and files for remediation & mapping GDPR Outcome Rapidly discover the most common Personal data in all the usual places, avoiding internal time and resources trying to define and manage these rules; Ensuring IT can help other stakeholders reduce Risk and Cost of Discovery.
What Is Data Mapping? Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation GDPR ARTICLE 30 Records of Processing Activities Article 30 of Regulation (EU) 2016/679 controller processor written sme regulator who why what where when way who why where way
Records of Processing Activities Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation It enables companies to address the requirements of the GDPR defined in Art. 30 through appropriate tooling and a set of artefacts provided through our GDPR Template. Art. 30 GDPR: Records of processing activities Each controller and, where applicable, the controller’s representative, shall maintain a record of processing activities under its responsibility. 2. Article 30
Data Subject Access Requests Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation Enterprise scale consistent auditable processing for all DSAR requests, levering a single catalog, policy and processing criteria for each data subject Streamline the DSAR decision and template repeatable but personalized responses within 30 days back to the data subject Provide auditable tracking, management and execution of all types of DSAR’s for Art. 15 3. Article 15
Governance and Lifecycle Management Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation Mask personal identifiable information with realistic but fictional data, de-identify sensitive information; mask complete business objects across heterogeneous databases & applications; when needed, generate synthetic test data Govern the lifecycle of data with archival, records management, and defensible disposal Drive to Data Minimisation under GDPR 4. Article 5 JASON MICHAELS ROBERT SMITH DBA View Referentially-intact subsets of data across related tables & applications, including metadata. Business View Overall historical “snapshot” of business activity, representing an application data record – e.g. payment, invoice, customer
Manage Consent Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation A Consent Service providing a framework for obtaining, maintaining and applying where specific consent is required, for some GDPR data processing, away from the current blanket single consent commonly imposed Supports any categories of Consent or Sharing preferences for data subjects, flexible and changeable by them at any time. Each Consent is more granular, specific for each Purpose and clearly conveys What data is related to that consented purpose. Where required, explicit transparent Purposeful Consent of any personal data processing is available for data subjects and processors to know and understand how it can be and is used. 5. Articles 4-7
Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation Consent Management
Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation What’s New for GDPR? RegulatoryML Lab Concept
Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation What’s New for GDPR? Blockchain Whitepaper ibm.biz/blockchain-gdpr Using real-world examples, this paper explores how blockchain could address five areas associated with GDPR compliance Rights of EU Data Subjects, Security of Processing, Lawfulness and Consent, Accountability of Compliance, and Data Protection by Design and by Default. In this paper, for each of the areas, we provide a point of view on how blockchain applies, we describe project examples, and we explore challenges and opportunities.
Thank you Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation Richard Hogg Global GDPR Evangelist — rghogg@us.ibm.com +1-703-963-2900 ibm.com @banjaxx
Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation

Recomendados

Adapting to the exponential development of technology
Adapting to the exponential development of technologyAdapting to the exponential development of technology
Adapting to the exponential development of technology
DataWorks Summit
 
Risk listening: monitoring for profitable growth
Risk listening: monitoring for profitable growthRisk listening: monitoring for profitable growth
Risk listening: monitoring for profitable growth
DataWorks Summit
 
Practical experiences using Atlas and Ranger to implement GDPR
Practical experiences using Atlas and Ranger to implement GDPRPractical experiences using Atlas and Ranger to implement GDPR
Practical experiences using Atlas and Ranger to implement GDPR
DataWorks Summit
 
Data Driven Development of Autonomous Driving at BMW
Data Driven Development of Autonomous Driving at BMWData Driven Development of Autonomous Driving at BMW
Data Driven Development of Autonomous Driving at BMW
DataWorks Summit
 
Climbing the AI Ladder
Climbing the AI LadderClimbing the AI Ladder
Climbing the AI Ladder
DataWorks Summit
 
How data modelling helps serve billions of queries in millisecond latency wit...
How data modelling helps serve billions of queries in millisecond latency wit...How data modelling helps serve billions of queries in millisecond latency wit...
How data modelling helps serve billions of queries in millisecond latency wit...
DataWorks Summit
 
Data Offload for the Chief Data Officer – how to move data onto Hadoop withou...
Data Offload for the Chief Data Officer – how to move data onto Hadoop withou...Data Offload for the Chief Data Officer – how to move data onto Hadoop withou...
Data Offload for the Chief Data Officer – how to move data onto Hadoop withou...
DataWorks Summit
 
Postgres Vision 2018: Data as the New Oil
Postgres Vision 2018: Data as the New OilPostgres Vision 2018: Data as the New Oil
Postgres Vision 2018: Data as the New Oil
EDB
 

Recomendados

Adapting to the exponential development of technology
Adapting to the exponential development of technologyAdapting to the exponential development of technology
Adapting to the exponential development of technology
DataWorks Summit
 
Risk listening: monitoring for profitable growth
Risk listening: monitoring for profitable growthRisk listening: monitoring for profitable growth
Risk listening: monitoring for profitable growth
DataWorks Summit
 
Practical experiences using Atlas and Ranger to implement GDPR
Practical experiences using Atlas and Ranger to implement GDPRPractical experiences using Atlas and Ranger to implement GDPR
Practical experiences using Atlas and Ranger to implement GDPR
DataWorks Summit
 
Data Driven Development of Autonomous Driving at BMW
Data Driven Development of Autonomous Driving at BMWData Driven Development of Autonomous Driving at BMW
Data Driven Development of Autonomous Driving at BMW
DataWorks Summit
 
Climbing the AI Ladder
Climbing the AI LadderClimbing the AI Ladder
Climbing the AI Ladder
DataWorks Summit
 
How data modelling helps serve billions of queries in millisecond latency wit...
How data modelling helps serve billions of queries in millisecond latency wit...How data modelling helps serve billions of queries in millisecond latency wit...
How data modelling helps serve billions of queries in millisecond latency wit...
DataWorks Summit
 
Data Offload for the Chief Data Officer – how to move data onto Hadoop withou...
Data Offload for the Chief Data Officer – how to move data onto Hadoop withou...Data Offload for the Chief Data Officer – how to move data onto Hadoop withou...
Data Offload for the Chief Data Officer – how to move data onto Hadoop withou...
DataWorks Summit
 
Postgres Vision 2018: Data as the New Oil
Postgres Vision 2018: Data as the New OilPostgres Vision 2018: Data as the New Oil
Postgres Vision 2018: Data as the New Oil
EDB
 
Postgres Vision 2018: AI Needs IA
Postgres Vision 2018: AI Needs IAPostgres Vision 2018: AI Needs IA
Postgres Vision 2018: AI Needs IA
EDB
 
Lufthansa Reference Architecture for the OpenGroup
Lufthansa Reference Architecture for the OpenGroupLufthansa Reference Architecture for the OpenGroup
Lufthansa Reference Architecture for the OpenGroup
Capgemini
 
Postgres Vision 2018: How to Consume your Database Platform On-premises
Postgres Vision 2018: How to Consume your Database Platform On-premisesPostgres Vision 2018: How to Consume your Database Platform On-premises
Postgres Vision 2018: How to Consume your Database Platform On-premises
EDB
 
Worldwide Hybrid Cloud Computing Market – Drivers, Opportunities, Trends, and...
Worldwide Hybrid Cloud Computing Market – Drivers, Opportunities, Trends, and...Worldwide Hybrid Cloud Computing Market – Drivers, Opportunities, Trends, and...
Worldwide Hybrid Cloud Computing Market – Drivers, Opportunities, Trends, and...
Infoholic Research
 
The Manulife Journey
The Manulife JourneyThe Manulife Journey
The Manulife Journey
DataWorks Summit
 
Postgres Vision 2018: The Pragmatic Cloud
Postgres Vision 2018: The Pragmatic CloudPostgres Vision 2018: The Pragmatic Cloud
Postgres Vision 2018: The Pragmatic Cloud
EDB
 
On Demand BI
On Demand BIOn Demand BI
On Demand BI
Darren Cunningham
 
Postgres Vision 2018: Taking Postgres Everywhere
Postgres Vision 2018: Taking Postgres EverywherePostgres Vision 2018: Taking Postgres Everywhere
Postgres Vision 2018: Taking Postgres Everywhere
EDB
 
Addressing Challenges with IoT Edge Management
Addressing Challenges with IoT Edge ManagementAddressing Challenges with IoT Edge Management
Addressing Challenges with IoT Edge Management
DataWorks Summit
 
Making Enterprise Big Data Small with Ease
Making Enterprise Big Data Small with EaseMaking Enterprise Big Data Small with Ease
Making Enterprise Big Data Small with Ease
Hortonworks
 
Cloud Adoption, Risks and Rewards Infographic
Cloud Adoption, Risks and Rewards InfographicCloud Adoption, Risks and Rewards Infographic
Cloud Adoption, Risks and Rewards Infographic
Hitachi Vantara
 
Postgres Vision 2018: Making Modern an Old Legacy System
Postgres Vision 2018: Making Modern an Old Legacy SystemPostgres Vision 2018: Making Modern an Old Legacy System
Postgres Vision 2018: Making Modern an Old Legacy System
EDB
 
PgConf 2018 - Postgres in a World of DevOps
PgConf 2018 - Postgres in a World of DevOpsPgConf 2018 - Postgres in a World of DevOps
PgConf 2018 - Postgres in a World of DevOps
EDB
 
Harnessing the Power of Big Data at Freddie Mac
Harnessing the Power of Big Data at Freddie MacHarnessing the Power of Big Data at Freddie Mac
Harnessing the Power of Big Data at Freddie Mac
DataWorks Summit
 
Three Dimensions of Data as a Service
Three Dimensions of Data as a ServiceThree Dimensions of Data as a Service
Three Dimensions of Data as a Service
Denodo
 
Driving Digital Transformation Through Global Data Management
Driving Digital Transformation Through Global Data ManagementDriving Digital Transformation Through Global Data Management
Driving Digital Transformation Through Global Data Management
Hortonworks
 
Native Spark Executors on Kubernetes: Diving into the Data Lake - Chicago Clo...
Native Spark Executors on Kubernetes: Diving into the Data Lake - Chicago Clo...Native Spark Executors on Kubernetes: Diving into the Data Lake - Chicago Clo...
Native Spark Executors on Kubernetes: Diving into the Data Lake - Chicago Clo...
Mariano Gonzalez
 
Defining a Digitalization Reference Architecture for the Pharma Industry
Defining a Digitalization Reference Architecture for the Pharma IndustryDefining a Digitalization Reference Architecture for the Pharma Industry
Defining a Digitalization Reference Architecture for the Pharma Industry
Capgemini
 
Postgres Vision 2018: Your Migration Path - Rabobank and a New DBaaS
Postgres Vision 2018: Your Migration Path - Rabobank and a New DBaaS Postgres Vision 2018: Your Migration Path - Rabobank and a New DBaaS
Postgres Vision 2018: Your Migration Path - Rabobank and a New DBaaS
EDB
 
Next generation Polyglot Architectures using Neo4j by Stefan Kolmar
Next generation Polyglot Architectures using Neo4j by Stefan KolmarNext generation Polyglot Architectures using Neo4j by Stefan Kolmar
Next generation Polyglot Architectures using Neo4j by Stefan Kolmar
Big Data Spain
 
1 -2-6 kista watson summit-gdpr ibm pov hogg-sm
1 -2-6 kista watson summit-gdpr ibm pov hogg-sm1 -2-6 kista watson summit-gdpr ibm pov hogg-sm
1 -2-6 kista watson summit-gdpr ibm pov hogg-sm
IBM Sverige
 
20170323 are you ready the new gdpr is here
20170323 are you ready the new gdpr is here20170323 are you ready the new gdpr is here
20170323 are you ready the new gdpr is here
Richard Hogg,Global GDPR Offerings Evangelist
 

Más contenido relacionado

La actualidad más candente

The Manulife Journey
The Manulife JourneyThe Manulife Journey
The Manulife Journey
DataWorks Summit
 
Addressing Challenges with IoT Edge Management
Addressing Challenges with IoT Edge ManagementAddressing Challenges with IoT Edge Management
Addressing Challenges with IoT Edge Management
DataWorks Summit
 
Harnessing the Power of Big Data at Freddie Mac
Harnessing the Power of Big Data at Freddie MacHarnessing the Power of Big Data at Freddie Mac
Harnessing the Power of Big Data at Freddie Mac
DataWorks Summit
 
Three Dimensions of Data as a Service
Three Dimensions of Data as a ServiceThree Dimensions of Data as a Service
Three Dimensions of Data as a Service
Denodo
 
Driving Digital Transformation Through Global Data Management
Driving Digital Transformation Through Global Data ManagementDriving Digital Transformation Through Global Data Management
Driving Digital Transformation Through Global Data Management
Hortonworks
 
Native Spark Executors on Kubernetes: Diving into the Data Lake - Chicago Clo...
Native Spark Executors on Kubernetes: Diving into the Data Lake - Chicago Clo...Native Spark Executors on Kubernetes: Diving into the Data Lake - Chicago Clo...
Native Spark Executors on Kubernetes: Diving into the Data Lake - Chicago Clo...
Mariano Gonzalez
 
Defining a Digitalization Reference Architecture for the Pharma Industry
Defining a Digitalization Reference Architecture for the Pharma IndustryDefining a Digitalization Reference Architecture for the Pharma Industry
Defining a Digitalization Reference Architecture for the Pharma Industry
Capgemini
 

La actualidad más candente (20)

Postgres Vision 2018: AI Needs IA
Postgres Vision 2018: AI Needs IAPostgres Vision 2018: AI Needs IA
Postgres Vision 2018: AI Needs IA
 
Lufthansa Reference Architecture for the OpenGroup
Lufthansa Reference Architecture for the OpenGroupLufthansa Reference Architecture for the OpenGroup
Lufthansa Reference Architecture for the OpenGroup
 
Postgres Vision 2018: How to Consume your Database Platform On-premises
Postgres Vision 2018: How to Consume your Database Platform On-premisesPostgres Vision 2018: How to Consume your Database Platform On-premises
Postgres Vision 2018: How to Consume your Database Platform On-premises
 
Worldwide Hybrid Cloud Computing Market – Drivers, Opportunities, Trends, and...
Worldwide Hybrid Cloud Computing Market – Drivers, Opportunities, Trends, and...Worldwide Hybrid Cloud Computing Market – Drivers, Opportunities, Trends, and...
Worldwide Hybrid Cloud Computing Market – Drivers, Opportunities, Trends, and...
 
The Manulife Journey
The Manulife JourneyThe Manulife Journey
The Manulife Journey
 
Postgres Vision 2018: The Pragmatic Cloud
Postgres Vision 2018: The Pragmatic CloudPostgres Vision 2018: The Pragmatic Cloud
Postgres Vision 2018: The Pragmatic Cloud
 
On Demand BI
On Demand BIOn Demand BI
On Demand BI
 
Postgres Vision 2018: Taking Postgres Everywhere
Postgres Vision 2018: Taking Postgres EverywherePostgres Vision 2018: Taking Postgres Everywhere
Postgres Vision 2018: Taking Postgres Everywhere
 
Addressing Challenges with IoT Edge Management
Addressing Challenges with IoT Edge ManagementAddressing Challenges with IoT Edge Management
Addressing Challenges with IoT Edge Management
 
Making Enterprise Big Data Small with Ease
Making Enterprise Big Data Small with EaseMaking Enterprise Big Data Small with Ease
Making Enterprise Big Data Small with Ease
 
Cloud Adoption, Risks and Rewards Infographic
Cloud Adoption, Risks and Rewards InfographicCloud Adoption, Risks and Rewards Infographic
Cloud Adoption, Risks and Rewards Infographic
 
Postgres Vision 2018: Making Modern an Old Legacy System
Postgres Vision 2018: Making Modern an Old Legacy SystemPostgres Vision 2018: Making Modern an Old Legacy System
Postgres Vision 2018: Making Modern an Old Legacy System
 
PgConf 2018 - Postgres in a World of DevOps
PgConf 2018 - Postgres in a World of DevOpsPgConf 2018 - Postgres in a World of DevOps
PgConf 2018 - Postgres in a World of DevOps
 
Harnessing the Power of Big Data at Freddie Mac
Harnessing the Power of Big Data at Freddie MacHarnessing the Power of Big Data at Freddie Mac
Harnessing the Power of Big Data at Freddie Mac
 
Three Dimensions of Data as a Service
Three Dimensions of Data as a ServiceThree Dimensions of Data as a Service
Three Dimensions of Data as a Service
 
Driving Digital Transformation Through Global Data Management
Driving Digital Transformation Through Global Data ManagementDriving Digital Transformation Through Global Data Management
Driving Digital Transformation Through Global Data Management
 
Native Spark Executors on Kubernetes: Diving into the Data Lake - Chicago Clo...
Native Spark Executors on Kubernetes: Diving into the Data Lake - Chicago Clo...Native Spark Executors on Kubernetes: Diving into the Data Lake - Chicago Clo...
Native Spark Executors on Kubernetes: Diving into the Data Lake - Chicago Clo...
 
Defining a Digitalization Reference Architecture for the Pharma Industry
Defining a Digitalization Reference Architecture for the Pharma IndustryDefining a Digitalization Reference Architecture for the Pharma Industry
Defining a Digitalization Reference Architecture for the Pharma Industry
 
Postgres Vision 2018: Your Migration Path - Rabobank and a New DBaaS
Postgres Vision 2018: Your Migration Path - Rabobank and a New DBaaS Postgres Vision 2018: Your Migration Path - Rabobank and a New DBaaS
Postgres Vision 2018: Your Migration Path - Rabobank and a New DBaaS
 
Next generation Polyglot Architectures using Neo4j by Stefan Kolmar
Next generation Polyglot Architectures using Neo4j by Stefan KolmarNext generation Polyglot Architectures using Neo4j by Stefan Kolmar
Next generation Polyglot Architectures using Neo4j by Stefan Kolmar
 

Similar a GDPR: the IBM journey to compliance

SFScon19 - Giuliana Viviano - Big Data e Data Analytics
SFScon19 - Giuliana Viviano - Big Data e Data AnalyticsSFScon19 - Giuliana Viviano - Big Data e Data Analytics
SFScon19 - Giuliana Viviano - Big Data e Data Analytics
South Tyrol Free Software Conference
 
Preparing for GDPR: What Every B2B Marketer Must Know
Preparing for GDPR: What Every B2B Marketer Must KnowPreparing for GDPR: What Every B2B Marketer Must Know
Preparing for GDPR: What Every B2B Marketer Must Know
Integrate
 
SAP insider GDPR compendium Hernan Huwyler
SAP insider GDPR compendium Hernan HuwylerSAP insider GDPR compendium Hernan Huwyler
SAP insider GDPR compendium Hernan Huwyler
Hernan Huwyler, MBA CPA
 

Similar a GDPR: the IBM journey to compliance (20)

1 -2-6 kista watson summit-gdpr ibm pov hogg-sm
1 -2-6 kista watson summit-gdpr ibm pov hogg-sm1 -2-6 kista watson summit-gdpr ibm pov hogg-sm
1 -2-6 kista watson summit-gdpr ibm pov hogg-sm
 
20170323 are you ready the new gdpr is here
20170323 are you ready the new gdpr is here20170323 are you ready the new gdpr is here
20170323 are you ready the new gdpr is here
 
Findability Day 2016 - What is GDPR?
Findability Day 2016 - What is GDPR?Findability Day 2016 - What is GDPR?
Findability Day 2016 - What is GDPR?
 
GDPR is Here. Now What?
GDPR is Here. Now What?GDPR is Here. Now What?
GDPR is Here. Now What?
 
Janrain Identity Cloud GDPR Assessment Kit
Janrain Identity Cloud GDPR Assessment Kit Janrain Identity Cloud GDPR Assessment Kit
Janrain Identity Cloud GDPR Assessment Kit
 
GDPR: Data Privacy in the New
GDPR: Data Privacy in the NewGDPR: Data Privacy in the New
GDPR: Data Privacy in the New
 
The GDPR Most Wanted: The Marketer and Analyst's Role in Compliance
The GDPR Most Wanted: The Marketer and Analyst's Role in ComplianceThe GDPR Most Wanted: The Marketer and Analyst's Role in Compliance
The GDPR Most Wanted: The Marketer and Analyst's Role in Compliance
 
Big Data LDN 2017: Applied AI for GDPR
Big Data LDN 2017: Applied AI for GDPRBig Data LDN 2017: Applied AI for GDPR
Big Data LDN 2017: Applied AI for GDPR
 
Top gdpr assessment tools
Top gdpr assessment toolsTop gdpr assessment tools
Top gdpr assessment tools
 
GDPR: 20 Million Reasons to get ready - Part 1: Preparing for compliance
GDPR: 20 Million Reasons to get ready - Part 1: Preparing for complianceGDPR: 20 Million Reasons to get ready - Part 1: Preparing for compliance
GDPR: 20 Million Reasons to get ready - Part 1: Preparing for compliance
 
BigID GDPR Compliance Automation Webinar Slides
BigID GDPR Compliance Automation Webinar SlidesBigID GDPR Compliance Automation Webinar Slides
BigID GDPR Compliance Automation Webinar Slides
 
Explain your algorithmic decisions for gdpr
Explain your algorithmic decisions for gdprExplain your algorithmic decisions for gdpr
Explain your algorithmic decisions for gdpr
 
Top 10 GDPR solution providers 2020
Top 10 GDPR solution providers 2020Top 10 GDPR solution providers 2020
Top 10 GDPR solution providers 2020
 
SFScon19 - Giuliana Viviano - Big Data e Data Analytics
SFScon19 - Giuliana Viviano - Big Data e Data AnalyticsSFScon19 - Giuliana Viviano - Big Data e Data Analytics
SFScon19 - Giuliana Viviano - Big Data e Data Analytics
 
Impact of GDPR on Third Party and M&A Security
Impact of GDPR on Third Party and M&A SecurityImpact of GDPR on Third Party and M&A Security
Impact of GDPR on Third Party and M&A Security
 
2 -2-6 kista watson summit-gdpr how ibm preparing hogg-sm
2 -2-6 kista watson summit-gdpr how ibm preparing hogg-sm2 -2-6 kista watson summit-gdpr how ibm preparing hogg-sm
2 -2-6 kista watson summit-gdpr how ibm preparing hogg-sm
 
BigID GDPR Privacy Automation Data Sheet
BigID GDPR Privacy Automation Data SheetBigID GDPR Privacy Automation Data Sheet
BigID GDPR Privacy Automation Data Sheet
 
Preparing for GDPR: What Every B2B Marketer Must Know
Preparing for GDPR: What Every B2B Marketer Must KnowPreparing for GDPR: What Every B2B Marketer Must Know
Preparing for GDPR: What Every B2B Marketer Must Know
 
BigID Data Sheet: GDPR Compliance
BigID Data Sheet: GDPR ComplianceBigID Data Sheet: GDPR Compliance
BigID Data Sheet: GDPR Compliance
 
SAP insider GDPR compendium Hernan Huwyler
SAP insider GDPR compendium Hernan HuwylerSAP insider GDPR compendium Hernan Huwyler
SAP insider GDPR compendium Hernan Huwyler
 

Más de DataWorks Summit

Data Science Crash Course
Data Science Crash CourseData Science Crash Course
Data Science Crash Course
DataWorks Summit
 
Floating on a RAFT: HBase Durability with Apache Ratis
Floating on a RAFT: HBase Durability with Apache RatisFloating on a RAFT: HBase Durability with Apache Ratis
Floating on a RAFT: HBase Durability with Apache Ratis
DataWorks Summit
 
Tracking Crime as It Occurs with Apache Phoenix, Apache HBase and Apache NiFi
Tracking Crime as It Occurs with Apache Phoenix, Apache HBase and Apache NiFiTracking Crime as It Occurs with Apache Phoenix, Apache HBase and Apache NiFi
Tracking Crime as It Occurs with Apache Phoenix, Apache HBase and Apache NiFi
DataWorks Summit
 
HBase Tales From the Trenches - Short stories about most common HBase operati...
HBase Tales From the Trenches - Short stories about most common HBase operati...HBase Tales From the Trenches - Short stories about most common HBase operati...
HBase Tales From the Trenches - Short stories about most common HBase operati...
DataWorks Summit
 
Practical NoSQL: Accumulo's dirlist Example
Practical NoSQL: Accumulo's dirlist ExamplePractical NoSQL: Accumulo's dirlist Example
Practical NoSQL: Accumulo's dirlist Example
DataWorks Summit
 
HBase Global Indexing to support large-scale data ingestion at Uber
HBase Global Indexing to support large-scale data ingestion at UberHBase Global Indexing to support large-scale data ingestion at Uber
HBase Global Indexing to support large-scale data ingestion at Uber
DataWorks Summit
 
Scaling Cloud-Scale Translytics Workloads with Omid and Phoenix
Scaling Cloud-Scale Translytics Workloads with Omid and PhoenixScaling Cloud-Scale Translytics Workloads with Omid and Phoenix
Scaling Cloud-Scale Translytics Workloads with Omid and Phoenix
DataWorks Summit
 
Building the High Speed Cybersecurity Data Pipeline Using Apache NiFi
Building the High Speed Cybersecurity Data Pipeline Using Apache NiFiBuilding the High Speed Cybersecurity Data Pipeline Using Apache NiFi
Building the High Speed Cybersecurity Data Pipeline Using Apache NiFi
DataWorks Summit
 
Security Framework for Multitenant Architecture
Security Framework for Multitenant ArchitectureSecurity Framework for Multitenant Architecture
Security Framework for Multitenant Architecture
DataWorks Summit
 
Presto: Optimizing Performance of SQL-on-Anything Engine
Presto: Optimizing Performance of SQL-on-Anything EnginePresto: Optimizing Performance of SQL-on-Anything Engine
Presto: Optimizing Performance of SQL-on-Anything Engine
DataWorks Summit
 
Introducing MlFlow: An Open Source Platform for the Machine Learning Lifecycl...
Introducing MlFlow: An Open Source Platform for the Machine Learning Lifecycl...Introducing MlFlow: An Open Source Platform for the Machine Learning Lifecycl...
Introducing MlFlow: An Open Source Platform for the Machine Learning Lifecycl...
DataWorks Summit
 
Extending Twitter's Data Platform to Google Cloud
Extending Twitter's Data Platform to Google CloudExtending Twitter's Data Platform to Google Cloud
Extending Twitter's Data Platform to Google Cloud
DataWorks Summit
 
Event-Driven Messaging and Actions using Apache Flink and Apache NiFi
Event-Driven Messaging and Actions using Apache Flink and Apache NiFiEvent-Driven Messaging and Actions using Apache Flink and Apache NiFi
Event-Driven Messaging and Actions using Apache Flink and Apache NiFi
DataWorks Summit
 
Securing Data in Hybrid on-premise and Cloud Environments using Apache Ranger
Securing Data in Hybrid on-premise and Cloud Environments using Apache RangerSecuring Data in Hybrid on-premise and Cloud Environments using Apache Ranger
Securing Data in Hybrid on-premise and Cloud Environments using Apache Ranger
DataWorks Summit
 
Big Data Meets NVM: Accelerating Big Data Processing with Non-Volatile Memory...
Big Data Meets NVM: Accelerating Big Data Processing with Non-Volatile Memory...Big Data Meets NVM: Accelerating Big Data Processing with Non-Volatile Memory...
Big Data Meets NVM: Accelerating Big Data Processing with Non-Volatile Memory...
DataWorks Summit
 
Computer Vision: Coming to a Store Near You
Computer Vision: Coming to a Store Near YouComputer Vision: Coming to a Store Near You
Computer Vision: Coming to a Store Near You
DataWorks Summit
 
Big Data Genomics: Clustering Billions of DNA Sequences with Apache Spark
Big Data Genomics: Clustering Billions of DNA Sequences with Apache SparkBig Data Genomics: Clustering Billions of DNA Sequences with Apache Spark
Big Data Genomics: Clustering Billions of DNA Sequences with Apache Spark
DataWorks Summit
 

Más de DataWorks Summit (20)

Data Science Crash Course
Data Science Crash CourseData Science Crash Course
Data Science Crash Course
 
Floating on a RAFT: HBase Durability with Apache Ratis
Floating on a RAFT: HBase Durability with Apache RatisFloating on a RAFT: HBase Durability with Apache Ratis
Floating on a RAFT: HBase Durability with Apache Ratis
 
Tracking Crime as It Occurs with Apache Phoenix, Apache HBase and Apache NiFi
Tracking Crime as It Occurs with Apache Phoenix, Apache HBase and Apache NiFiTracking Crime as It Occurs with Apache Phoenix, Apache HBase and Apache NiFi
Tracking Crime as It Occurs with Apache Phoenix, Apache HBase and Apache NiFi
 
HBase Tales From the Trenches - Short stories about most common HBase operati...
HBase Tales From the Trenches - Short stories about most common HBase operati...HBase Tales From the Trenches - Short stories about most common HBase operati...
HBase Tales From the Trenches - Short stories about most common HBase operati...
 
Optimizing Geospatial Operations with Server-side Programming in HBase and Ac...
Optimizing Geospatial Operations with Server-side Programming in HBase and Ac...Optimizing Geospatial Operations with Server-side Programming in HBase and Ac...
Optimizing Geospatial Operations with Server-side Programming in HBase and Ac...
 
Managing the Dewey Decimal System
Managing the Dewey Decimal SystemManaging the Dewey Decimal System
Managing the Dewey Decimal System
 
Practical NoSQL: Accumulo's dirlist Example
Practical NoSQL: Accumulo's dirlist ExamplePractical NoSQL: Accumulo's dirlist Example
Practical NoSQL: Accumulo's dirlist Example
 
HBase Global Indexing to support large-scale data ingestion at Uber
HBase Global Indexing to support large-scale data ingestion at UberHBase Global Indexing to support large-scale data ingestion at Uber
HBase Global Indexing to support large-scale data ingestion at Uber
 
Scaling Cloud-Scale Translytics Workloads with Omid and Phoenix
Scaling Cloud-Scale Translytics Workloads with Omid and PhoenixScaling Cloud-Scale Translytics Workloads with Omid and Phoenix
Scaling Cloud-Scale Translytics Workloads with Omid and Phoenix
 
Building the High Speed Cybersecurity Data Pipeline Using Apache NiFi
Building the High Speed Cybersecurity Data Pipeline Using Apache NiFiBuilding the High Speed Cybersecurity Data Pipeline Using Apache NiFi
Building the High Speed Cybersecurity Data Pipeline Using Apache NiFi
 
Supporting Apache HBase : Troubleshooting and Supportability Improvements
Supporting Apache HBase : Troubleshooting and Supportability ImprovementsSupporting Apache HBase : Troubleshooting and Supportability Improvements
Supporting Apache HBase : Troubleshooting and Supportability Improvements
 
Security Framework for Multitenant Architecture
Security Framework for Multitenant ArchitectureSecurity Framework for Multitenant Architecture
Security Framework for Multitenant Architecture
 
Presto: Optimizing Performance of SQL-on-Anything Engine
Presto: Optimizing Performance of SQL-on-Anything EnginePresto: Optimizing Performance of SQL-on-Anything Engine
Presto: Optimizing Performance of SQL-on-Anything Engine
 
Introducing MlFlow: An Open Source Platform for the Machine Learning Lifecycl...
Introducing MlFlow: An Open Source Platform for the Machine Learning Lifecycl...Introducing MlFlow: An Open Source Platform for the Machine Learning Lifecycl...
Introducing MlFlow: An Open Source Platform for the Machine Learning Lifecycl...
 
Extending Twitter's Data Platform to Google Cloud
Extending Twitter's Data Platform to Google CloudExtending Twitter's Data Platform to Google Cloud
Extending Twitter's Data Platform to Google Cloud
 
Event-Driven Messaging and Actions using Apache Flink and Apache NiFi
Event-Driven Messaging and Actions using Apache Flink and Apache NiFiEvent-Driven Messaging and Actions using Apache Flink and Apache NiFi
Event-Driven Messaging and Actions using Apache Flink and Apache NiFi
 
Securing Data in Hybrid on-premise and Cloud Environments using Apache Ranger
Securing Data in Hybrid on-premise and Cloud Environments using Apache RangerSecuring Data in Hybrid on-premise and Cloud Environments using Apache Ranger
Securing Data in Hybrid on-premise and Cloud Environments using Apache Ranger
 
Big Data Meets NVM: Accelerating Big Data Processing with Non-Volatile Memory...
Big Data Meets NVM: Accelerating Big Data Processing with Non-Volatile Memory...Big Data Meets NVM: Accelerating Big Data Processing with Non-Volatile Memory...
Big Data Meets NVM: Accelerating Big Data Processing with Non-Volatile Memory...
 
Computer Vision: Coming to a Store Near You
Computer Vision: Coming to a Store Near YouComputer Vision: Coming to a Store Near You
Computer Vision: Coming to a Store Near You
 
Big Data Genomics: Clustering Billions of DNA Sequences with Apache Spark
Big Data Genomics: Clustering Billions of DNA Sequences with Apache SparkBig Data Genomics: Clustering Billions of DNA Sequences with Apache Spark
Big Data Genomics: Clustering Billions of DNA Sequences with Apache Spark
 

Último

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Miguel Araújo
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc
 
Why Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire businessWhy Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire business
panagenda
 
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Jeffrey Haguewood
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?
Igalia
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
?#DUbAI#??##{{(☎️+971_581248768%)**%*]'#abortion pills for sale in dubai@
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
sammart93
 

Último (20)

"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ..."I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
 
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
 
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWEREMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
 
Why Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire businessWhy Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire business
 
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
 
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
 
MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
 
Corporate and higher education May webinar.pptx
Corporate and higher education May webinar.pptxCorporate and higher education May webinar.pptx
Corporate and higher education May webinar.pptx
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 
Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...
Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...
Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
 

GDPR: the IBM journey to compliance

  • 1. Dataworks Berlin GDPR : The IBM Journey to Compliance — Richard Hogg, Global GDPR Evangelist Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation
  • 2. Richard Hogg Global GDPR Evangelist IBM @banjaxx G- 36 DaysDataworks Berlin / April 19, 2018 / © 2018 IBM Corporation
  • 3. GDPR Legal Disclaimer Clients are responsible for ensuring their own compliance with various laws and regulations, including the European Union General Data Protection Regulation. Clients are solely responsible for obtaining advice of competent legal counsel as to the identification and interpretation of any relevant laws and regulations that may affect the clients’ business and any actions the clients may need to take to comply with such laws and regulations. The products, services, and other capabilities described herein are not suitable for all client situations and may have restricted availability. IBM does not provide legal, accounting or auditing advice or represent or warrant that its services or products will ensure that clients are in compliance with any law or regulation. Learn more about IBM's own GDPR readiness journey and our GDPR capabilities and offerings to support your compliance journey here. Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation
  • 4. Simply… Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation GDPR Compliance Data Protection Personal Data
  • 5. The EU General Data Protection Regulation Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation GDPR From May 25th, 2018 Across 28 EU countries 4% of Global Revenue or €20M Potential Penalty Per-Incident Applies Globally to any Organization working with Personal Data of a Data Subject residing in the EU Or Profiling From the EU 5 Key General Data Protection Regulation Obligations Rights of EU Data Subjects Security of Personal Data Compliance & Legal Basis Accountability of Compliance Data Protection by Design and by Default
  • 6. Exemplar Types of Personal Data Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation Personal Data: an identifier such as a name, an identification number, location data, online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that person. Sensitive Personal Data: data consisting of racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, genetic data, biometric data, data concerning health or data concerning a natural person's sex life or sexual orientation. The commission or alleged commission by them of any offence; or any proceedings for any offence committed or alleged to have been committed by them, the disposal of such proceedings or the sentence of any court in such proceedings.
  • 7. 5 Phases to Readiness Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation GDPR Framework – Conduct GDPR risk & privacy assessments across governance, people, processes, data, security – Develop GDPR Readiness Roadmap – Identify & Map personal data – Design governance, training, communication, and process standards – Design privacy, data management and security management standards – Develop and embed procedures, processes and tools – Deliver GDPR training – Develop & embed standards & policies using Privacy by Design, Security by Design – Detailed Data Discovery – Execute all relevant business processes – Monitor security and privacy using TOMs – Manage Consent & data subject access rights Identify GDPR impact and plan Technical and Organizational Measures (TOM’s) Includes Data Protection controls, processes and solutions to be implemented TOMs in place: Personal Data discovery, classification and governance in place Begin the new GDPR ready way of working – Monitor, assess, audit, report and evaluate adherence to GDPR standards Assess Design Transform ConformOperate Monitor TOMs execution; deliver compliance evidence to internal and external stakeholders Assessments and roadmap Defined implementation plan Process enhancements completed Operational framework in place Ongoing monitoring and reporting ActivityOutcomePhase
  • 8. What Is IBM Doing for GDPR Readiness? Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation Our Market Commitment IBM has established a global project to prepare for GDPR, both for our internal processes and for our commercial offerings. IBM recognises that our customers will rely on IBM's offerings and technical assistance to achieve GDPR compliance within their own organisations and IBM is well-positioned to meet this critical need. Our GDPR Readiness Programme GDPR Programme Management Office IBM as a Data Controller Mission: Address IBM’s obligations for managing internal data. IBM as a Data Processor Mission: Ensure compliance and governance for all IBM offerings and services that process personal data. IBM GDPR Common Services Mission: Deploy enterprise tools and common services to facilitate GDPR-related policy, system and business process changes. IBM Vendor Management Mission: Align our supply chain to the upstream obligations we make to our clients and to our internal responsibilities. IBM Client & Contract Management Mission: Help make the client buying process GDPR ready. GDPR Go-To- Market Mission: Create a unified solution to help our clients with their GDPR readiness programmes. IBM has established a global readiness programme tasked with identifying the key impacts of the GDPR across IBM’s business and preparing IBM’s internal processes and commercial offerings for compliance with the GDPR. The programme is organised into several work streams, staffed with IBM’s top data privacy and security professionals. Focal points in each Business Unit are responsible for implementing the GDPR- related policy, system and business process changes mandated by the various key work streams. www.ibm.com/gdpr + new Audit Workstream
  • 9. Northern Trust Accelerated GDPR Readiness — Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation “The journey we took to know, trust, use our data is now accelerating our readiness to GDPR. • Data cataloging efforts to map sensitive data elements across key applications improved company operations and accelerated our path to be GDPR ready • GDPR is now helping us to advance our metadata for other purposes such as data protection • With good quality data with embedded governance controls, my group is providing better service to my constituents so Northern Trust can better serve its customers.” Sanjay Saxena Senior Vice President of Enterprise Data Governance at Northern Trust
  • 10. Use your data Build a single source of truth to drive a 360-degree view of your data. Unleash insights and deepen customer relationships. Trust your data Capture lineage, help ensure quality of dynamic data and stay on top of regulations. Know your data Discover, find, integrate, classify and catalog all types of data. Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation
  • 11. Driving Consumer Engagement, Innovation and Competitive Advantage Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation GDPR 66%of users feel more empowered to share data once it has strong governance enablement* Respect and treat personal data properly Build personalized experience Help Compliance readiness Build brand value & loyalty Source: Lock, Michael. “Data Governance 2.0: Uniting People and Information to Drive Real Business Results, Aberdeen Group, 31 August 2017, https://www-01.ibm.com/common/ssi/cgi- bin/ssialias?htmlfid=IML14586USEN&
  • 12. Driving Value Beyond GDPR Compliance Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation The Value of Governance Making data cleaner and more trustworthy contributes to a technology environment that is easier to interact with, protecting data, and guiding users toward the data they need to support their decisions. Find-Share-Collaborate − Break down data silos − Make structured and unstructured data available through a self-service model − Turn complex business data into business value − Be proacitve in the face of changing regulatory environment Data Governance 2.0 “Uniting people and information to drive real business Results” (Aberdeen group Study – August 2017)
  • 13. Opportunities the GDPR Presents to All Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation Reinforcing accountability with your customers Digital engagement and personalisation Improved data management and understanding 1 2 3
  • 14. Build once. Address many needs. Accelerate innovation. ArchivingRecords and retention Audit readinessSelf-service access to data and analytics Discovery360-degree information driven insights Regulations (such as GDPR) Privacy and protection EDW optimization Trusted Analytics Foundation Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation
  • 15. AI & ML GDPR Accelerators Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation
  • 16. Compare and Comply Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation Watson Compare & Comply allows attorneys to load contracts and other data such as regulations from any source and have Watson analyze and consider the key language, clauses or paragraphs driving the need for further analysis or change Watson considers the contractual terms, regulations or other terms and highlights paragraphs / sentences that contain control requirements (implicit/explicit). Users confirm the validity. Visualize how effectively controls have been assessed per regulation GDPR Outcome Creates a range of bespoke reporting to allow a clear view of where remediation is required, with clear traceability back to impacting new regulations, existing regulations or contractual terms. A clear link back to impacting regulation or de-regulation can be seen to support prioritization and discussions with the regulator
  • 17. Accelerate Taxonomy and Personal Data Mapping via Industry Model Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation Business Taxonomy for Industries mapping each GDPR Terms to business terms & objects, by Article − Consumable for Unified Governance Catalog execution by using IGC Helps pre-define common classes and types of Personal data to find and manage under GDPR − Helps define and accelerate determining which personal data types your business uses − Helps define the examples and methods of finding and managing such personal data GDPR Outcome An immediate re-usable taxonomy and framework of business terms, for what personal data is used in the business, towards a complete Mapping and inventory to a defensible ‘Article 30 Record of Processing of Personal data’ across the business. Marked up GDPR Regulation Supportive Content of all GDPR nouns in IGC Each relevant noun in the text points to equivalent IGC Term Industry agnostic representation of GDPR regulation
  • 18. Governance Value Beyond GDPR Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation Brand Value & Loyalty Strengthen your brand by defining and publishing ethical standards handling personal data both internal (employees) as external (clients)—a quality necessity for the digital age! Grow revenue, reduce churn and acquisition costs. Become ‘data driven’—Personalized Establish key projects like implementing Data Governance or creating a 360 Client View to transform your organization to be data driven as part of your GDPR implementation. Better customer insight and targeted marketing. Compliance Readiness and Business Productivity Established best practices for stewardship and efficiency of data projects and for confidence in handling future regulation. Show respect & trust for Personal Data Derive guidelines for handling personal data and raise the awareness as part of your organization’s values Records of processing activity Consent Building Block Journey Governance and lifecycle management Assessment Access by the data subject Discovery and mapping
  • 19. Discovery and Mapping (Art. 4-5) IS EE (IA, IGC), StoredIQ w/Cartridges, Industry Models w/GDPR content Records of Processing Activities (Art. 30) GDPR Template w/IS EE, StoredIQ, Cognos 11 Manage Consent (Art. 4-7) MDM w/ Consent Mgmt & Profiles Governance and Lifecycle Management (Art. 5) IS EE (IGC), Optim TDM & DP / TD Fabrication / Archive, Atlas, StoredIQ for Legal Data Subject Access (Art. 15) IGC, MDM, Atlas, StoredIQ, Optim, Case Manager Analytics GDPR Building Blocks Records of processing activity Consent Building Block Journey Governance and lifecycle management Assessment Access by the data subject Discovery and mapping Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation
  • 20. Discovery and Mapping Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation Know your relevant data: Understand where personal data resides Define your inventory of Personal Data Discover where Personal Data is stored Reveal ‘shadow’ data stores Process structured and unstructured data and store results in a common catalog Leverage GDPR specific content in Industry Models and GDPR Cartridges for StoredIQ (RegEx & ML) 1. Articles 4-5 Information Analyzer for Structured Data StoredIQ for Unstructured Data Industry Models for Business Vocabulary Conformance Information Governance Catalog
  • 21. Extensive Personal Data Discovery with GDPR Cartridges Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation Plug-in discovery accelerators to find a more extensive set of EU citizen personal data − Maximising the use of RegEx strings − Leveraging Machine Learning Annotators to auto-discover personal data entities such as Names, Addresses, Countries that can’t be defined or found by RegEx − Tailorable & extensible by clients Proven enterprise-scale capability to assess in-place the common sources and types of unstructured information − Heatmap view to prioritise Where Personal information has been found − Actionable outcomes and exports of specific data types and files for remediation & mapping GDPR Outcome Rapidly discover the most common Personal data in all the usual places, avoiding internal time and resources trying to define and manage these rules; Ensuring IT can help other stakeholders reduce Risk and Cost of Discovery.
  • 22. What Is Data Mapping? Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation GDPR ARTICLE 30 Records of Processing Activities Article 30 of Regulation (EU) 2016/679 controller processor written sme regulator who why what where when way who why where way
  • 23. Records of Processing Activities Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation It enables companies to address the requirements of the GDPR defined in Art. 30 through appropriate tooling and a set of artefacts provided through our GDPR Template. Art. 30 GDPR: Records of processing activities Each controller and, where applicable, the controller’s representative, shall maintain a record of processing activities under its responsibility. 2. Article 30
  • 24. Data Subject Access Requests Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation Enterprise scale consistent auditable processing for all DSAR requests, levering a single catalog, policy and processing criteria for each data subject Streamline the DSAR decision and template repeatable but personalized responses within 30 days back to the data subject Provide auditable tracking, management and execution of all types of DSAR’s for Art. 15 3. Article 15
  • 25. Governance and Lifecycle Management Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation Mask personal identifiable information with realistic but fictional data, de-identify sensitive information; mask complete business objects across heterogeneous databases & applications; when needed, generate synthetic test data Govern the lifecycle of data with archival, records management, and defensible disposal Drive to Data Minimisation under GDPR 4. Article 5 JASON MICHAELS ROBERT SMITH DBA View Referentially-intact subsets of data across related tables & applications, including metadata. Business View Overall historical “snapshot” of business activity, representing an application data record – e.g. payment, invoice, customer
  • 26. Manage Consent Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation A Consent Service providing a framework for obtaining, maintaining and applying where specific consent is required, for some GDPR data processing, away from the current blanket single consent commonly imposed Supports any categories of Consent or Sharing preferences for data subjects, flexible and changeable by them at any time. Each Consent is more granular, specific for each Purpose and clearly conveys What data is related to that consented purpose. Where required, explicit transparent Purposeful Consent of any personal data processing is available for data subjects and processors to know and understand how it can be and is used. 5. Articles 4-7
  • 27. Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation Consent Management
  • 28. Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation What’s New for GDPR? RegulatoryML Lab Concept
  • 29. Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation What’s New for GDPR? Blockchain Whitepaper ibm.biz/blockchain-gdpr Using real-world examples, this paper explores how blockchain could address five areas associated with GDPR compliance Rights of EU Data Subjects, Security of Processing, Lawfulness and Consent, Accountability of Compliance, and Data Protection by Design and by Default. In this paper, for each of the areas, we provide a point of view on how blockchain applies, we describe project examples, and we explore challenges and opportunities.
  • 30. Thank you Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation Richard Hogg Global GDPR Evangelist — rghogg@us.ibm.com +1-703-963-2900 ibm.com @banjaxx
  • 31. Dataworks Berlin / April 19, 2018 / © 2018 IBM Corporation