The General Data Protection Regulation became enforceable on May 25th 2018
The GDPR (General Data Protection Regulation) seeks to create a harmonised data protection law framework across the EU and aims to give back to data subjects, control of their personal data, whilst imposing strict rules on those hosting and processing this data, anywhere in the world. Read the eBook GDPR – how it works
The IBM GDPR Framework
IBM has created a 'GDPR framework' with five phases to help achieve readiness: Assess, Design, Transform, Operate, and Conform. The goal of the framework is to help clients manage security and privacy effectively in order for them to reduce risks and therefore incidents. IBM services and solutions are available to support you at each phase in your own GDPR readiness journey.
Assess
Activity: conduct GDPR risk and privacy assessments across governance, people, processes, data and security
Outcome: assessments and roadmap
Design
Activity: designing new, GDPR compliant, standards for each aspect of the business
Outcome: defines implementation plan
Transform
Activity: develop and embed procedures, processes and tools: conduct GDPR training
Outcome: process enhancements completed
Operate
Activity: execute & monitor relevant business processes: manage consent and data subject access rights
Outcome: operational framework in place
Conform
Activity: monitor, assess, audit, report and evaluate adherence to GDPR standards
Outcome: ongoing monitoring and reporting
Start your GDPR self assessment here
How can IBM help on your journey to GDPR readiness?
IBM offers comprehensive solutions, services and expertise to help your progress to GDPR readiness and beyond.
Security
The GDPR needs you to be on top of encryption, access controls and monitoring through to incident breach readiness and reporting. IBM Security services and solutions can accelerate your readiness for each of these.
Analytics
Protection of personal data needs you to discover and classify categories and types of data across the business; then prepare for Article 30 Records of Processing, mapping processing activities to personal data use. Our capabilities can help support your remediation, lifecycle management, consent and DSAR (Data Subject Access Rights) requests.
Cloud
Rather than merely complying, seize the opportunity presented by the GDPR to set your company apart from the competition using the IBM Cloud. Designed with built-in data security and privacy services, the IBM Cloud offers the platform and tools to help safeguard sensitive data wherever it resides.
Watson Marketing
We support marketers throughout their GDPR journey. Our AI-powered marketing solutions, accompanied with business expertise, will help you stay compliant with industry regulations.
Data Storage
Using IBM data storage and processing products to manage GDPR readiness, you can gain increased transparency and control over your data, positioning your company to realise efficiencies, identify opportunities and drive innovation.
Click here to download IBM's latest report: The New Reality for Government