No Result
View All Result
SUBSCRIBE | NO FEES, NO PAYWALLS
MANAGE MY SUBSCRIPTION
NEWSLETTER
Corporate Compliance Insights
  • Home
  • About
    • About CCI
    • CCI Magazine
    • Writing for CCI
    • Career Connection
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Library
    • Download Whitepapers & Reports
    • Download eBooks
    • New: Living Your Best Compliance Life by Mary Shirley
    • New: Ethics and Compliance for Humans by Adam Balfour
    • 2021: Raise Your Game, Not Your Voice by Lentini-Walker & Tschida
    • CCI Press & Compliance Bookshelf
  • Podcasts
    • Great Women in Compliance
    • Unless: The Podcast (Hemma Lomax)
  • Research
  • Webinars
  • Events
  • Subscribe
Jump to a Section
  • At the Office
    • Ethics
    • HR Compliance
    • Leadership & Career
    • Well-Being at Work
  • Compliance & Risk
    • Compliance
    • FCPA
    • Fraud
    • Risk
  • Finserv & Audit
    • Financial Services
    • Internal Audit
  • Governance
    • ESG
    • Getting Governance Right
  • Infosec
    • Cybersecurity
    • Data Privacy
  • Opinion
    • Adam Balfour
    • Jim DeLoach
    • Mary Shirley
    • Yan Tougas
No Result
View All Result
Corporate Compliance Insights
Home Data Privacy

3 Hidden Values of Preparing Early for GDPR

by Joe Garber
July 25, 2017
in Data Privacy, Featured
hand holding paper reading “start” on blurred background

Information Insight, Executive Alignment and Lower Costs

GDPR is rapidly approaching, and companies should begin to prepare for May 2018, when the regulations go into effect. Companies can actually benefit from early preparation to comply with GDPR—the benefits of which range from a competitive advantage through greater insight into data to greater alignment between business units and lower total costs. HPE’s Joe Garber explores three key benefits of preparing now for GDPR.

Early preparation for compliance with the European Union General Data Protection Regulation (GDPR) can deliver a wide range of benefits to organizations. These can range from securing a competitive advantage through greater insight into data to greater alignment between sometimes-competing business units to lower total costs.

At the core of GDPR – which becomes effective in May of 2018 – is the question of how organizations collect, manage and protect EU citizens’ and residents’ personal data.  Organizations are paying closer attention to GDPR than previous regulations of its kind because of the significant risks of noncompliance.  The most serious infractions, including not respecting the individual rights of data subjects, incur substantial fines (of the greater of 4 percent of global revenue or €20 million).  On top of this, there are also risks of legal action and lost customer confidence.

To gauge where your organization stands regarding its GDPR readiness, it is important that you understand what data exists within your enterprise, where it resides, if it is personal data, its relative value to the organization and the technology that supports its maintenance. More specifically, here are five questions that should be addressed when assessing your enterprise’s GDPR readiness:

  1. Where is the personal data stored that will fall under these regulations?
  2. How can I protect, store and securely back up data?
  3. How can I identity information for disposition, in accordance with the “right to be forgotten?”
  4. Can I report a breach within the timeline required by the EU data protection regulations?
  5. How can I reduce my overall risk profile?

While these questions are simply a starting point to begin the GDPR-readiness conversation, they are important in terms of understanding how your organization will be stronger as it prepares for compliance. Both information governance and security software will likely be needed to provide the framework for compliance. Information governance technology can help organizations discover where their information is stored (with the input of your privacy counsel) so they can determine what information should be managed to GDPR standards. This technology can also enable the user to establish and enforce policies, move data to a consolidated repository (if necessary) and manage this subset of information throughout its life cycle. As a byproduct, organizations will learn more about their data that can be used to help address an individual’s “right to be forgotten” request and those related to other individual rights guaranteed to data subjects under GDPR. Data security, working in conjunction with governance practices, can help secure content regardless of its location within the enterprise.

With the “how” now outlined, let’s take a closer look at the “why.”  In many conversations I’ve had with organizations preparing to comply with GDPR, there are a couple of key themes that come up regularly.  These organizations’ senior executives are looking to prepare for GDPR as soon as possible because they believe compliance will deliver a number of benefits that extend well beyond managing risk. They often discuss GDPR as a catalyst for doing what they should have been doing already to drive and manage the business with greater control. Here are the three most commonly highlighted incremental benefits:

3 Hidden Values of GDPR Readiness

Information insight is gained as stock is taken of the data that is held across the enterprise. Most organizations collect and maintain information with little understanding of that data and how it is relevant to business objectives. GDPR demands that organizations understand their data and the value it holds and adhere to specific guidelines for handling that data and respecting data subjects’ fundamental rights and freedoms. The insight gained may allow organizations to use information more effectively – as acceptable under GDPR – to ultimately learn more about their customers, identify underfunded parts of the business and perhaps even attain a competitive advantage.

Executive alignment is occurring as the fear of noncompliance and its associated risks are making individual business units work together.  The regulation of the magnitude of GDPR is no longer a CIO or CTO directive. Instead, it is a cross-executive concern for privacy, security, compliance, marketing, legal and C-suite executives. By spending more time working together to understand how best to comply, executives are finding more synergies in what they do and identifying how they can better share appropriate information to better streamline the business.

Lowering cost is the outlier of these three themes, as it’s the only one not focused on driving the top line for the organization. That said, it can be a significant benefit, and it may be the deciding factor on getting a GDPR project funded. Cost savings from GDPR projects can come in many forms. The most common is often savings derived from retiring applications and defensibly deleting information that no longer has value. By performing the discovery process, categorizing information by relative value and potentially moving information from a variety of data silos, organizations are significantly lowering total storage costs and retiring sometimes thousands of applications on which they are paying maintenance costs.  (Read this if you’d like to understand the specifics and how they can translate to a positive ROI in a relatively short period of time).  This exercise also can be a first step to a cloud migration strategy and can help protect you from security risks – as older applications are often the first cyber-attack target.

Organizations need to take a holistic approach when evaluating corporate data and aligning information governance policies with broader data security efforts.  Those who act quickly will be in a position to not only achieve compliance, but also improve their insight into existing data to enhance products, processes and service offerings.

Don’t get left behind.  Start preparing for GDPR now, and take advantage of all the hidden benefits as well.  To help you get started, HPE has recently developed a GDPR starter kit that bundles the technologies that perform many of the activities described above.  Click here to learn more.


Tags: GDPR
Previous Post

TrustArc & Alibaba Cloud Partner to Deliver Industry-Leading Privacy Platform to Businesses Expanding in Fast Growing Asian Markets

Next Post

The 3 Common Challenges of ERM

Joe Garber

Joe Garber

Joe Garber is Vice President of Marketing for HPE’s Information Management & Governance business unit – a division of HPE Software.  In this role, he leads thought leadership, product messaging and go-to-market efforts for the organization’s data protection, file analysis, information archiving, records management, and eDiscovery offerings. Garber has more than 10 years of experience in Information Management & Governance.  He most recently served as Vice President of Marketing for RenewData where he managed all product and corporate marketing efforts for this archiving and eDiscovery software and service provider.  He also previously served as Director of Market Strategy for ZANTAZ (acquired by Autonomy and subsequently HP) where he led analyst relations, field marketing, market analysis, and thought leadership programs for the company’s information governance portfolio. During his 25-year career, Garber has also served as a management consultant for IBM, led marketing and product management for a variety of successful technology startups, and served as a press secretary for a U.S. Senator.  He holds a Bachelor of Arts degree from Pepperdine University and a Master's of Business Administration (MBA) from Cornell University – a top-ten business school – where he was awarded the prestigious “Park Leadership Fellow” scholarship for demonstrated leadership and academic excellence.

Related Posts

origami tiger

Paper Tigers Won’t Protect You: The Reality of Effective NIS2 Compliance

by Hans Kayaert
March 24, 2025

Why Belgium's early adoption model could prevent another round of ‘compliance theater’ across Europe

examining data on laptop screen

Privacy Rights Surge Forces Rethink of Data Management

by Gal Ringel
March 14, 2025

As global privacy regulations multiply, organizations face mounting pressure to efficiently respond to data subject requests amid complex data environments

gdpr website screenshot

In the World of JavaScript, GDPR Consent Forms Merely Scratching the Surface

by Rui Ribeiro
December 16, 2024

Consent forms alone don’t mean much when consumers are so tired of checking boxes they don’t even read the policies

us map black and white

Minnesota Latest State to OK Consumer Data Privacy Law

by Amanda Novak
August 26, 2024

Measure set to go into effect for most covered entities next summer

Next Post
team working together on a problem

The 3 Common Challenges of ERM

No Result
View All Result

Privacy Policy | AI Policy

Founded in 2010, CCI is the web’s premier global independent news source for compliance, ethics, risk and information security. 

Got a news tip? Get in touch. Want a weekly round-up in your inbox? Sign up for free. No subscription fees, no paywalls. 

Follow Us

Browse Topics:

  • CCI Press
  • Compliance
  • Compliance Podcasts
  • Cybersecurity
  • Data Privacy
  • eBooks Published by CCI
  • Ethics
  • FCPA
  • Featured
  • Financial Services
  • Fraud
  • Governance
  • GRC Vendor News
  • HR Compliance
  • Internal Audit
  • Leadership and Career
  • On Demand Webinars
  • Opinion
  • Research
  • Resource Library
  • Risk
  • Uncategorized
  • Videos
  • Webinars
  • Well-Being
  • Whitepapers

© 2025 Corporate Compliance Insights

Welcome to CCI. This site uses cookies. Please click OK to accept. Privacy Policy
Cookie settingsACCEPT
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
cookielawinfo-checbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
Others
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
SAVE & ACCEPT
No Result
View All Result
  • Home
  • About
    • About CCI
    • CCI Magazine
    • Writing for CCI
    • Career Connection
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Library
    • Download Whitepapers & Reports
    • Download eBooks
    • New: Living Your Best Compliance Life by Mary Shirley
    • New: Ethics and Compliance for Humans by Adam Balfour
    • 2021: Raise Your Game, Not Your Voice by Lentini-Walker & Tschida
    • CCI Press & Compliance Bookshelf
  • Podcasts
    • Great Women in Compliance
    • Unless: The Podcast (Hemma Lomax)
  • Research
  • Webinars
  • Events
  • Subscribe

© 2025 Corporate Compliance Insights