COMPANIES NEED TO TAKE THE TIME TO CAREFULLY UNDERSTAND THEIR NEW RESPONSIBILITIES .
CIO OPINION
A majority ( 56 %) aren ’ t done discerning what data third parties have or the potential implications of GDPR on third party contract management . Some ( 10.2 %) have yet to begin addressing third party GDPR compliance at all .
Vestuto added : “ Among the biggest GDPR compliance challenges is third party contract management . Under GDPR , organisations are responsible for ensuring privacy protection of EU-regulated data shared with or used by vendors and service providers , which requires those organisations to know who their vendors are and precisely what data those third parties hold . Updating or renegotiating contracts and agreements may help ensure third parties are GDPRcompliant when using your organisation ’ s EU-regulated data .”
Discovery challenges loom for 30 %
Discovery will be harder for their organisations now that the GDPR is enforceable , according to 30.6 % of respondents . Surprisingly , 18.6 % expect discovery to actually become easier under GDPR . Some ( 17.2 %) expect no change to their organisations ’ discovery practices as a result of GDPR taking effect .
“ Even those professionals closely involved in GDPR compliance may not fully appreciate the implications the new rules may have for discovery related to regulatory inquiry responses , litigation and internal investigation proceedings , as well as other aspects of their businesses ,” Vestuto cautioned .
Scalability is key as more jurisdictions add data privacy rules
Nearly half of respondents ( 48.2 %) say their organisations ’ data privacy programmes are scalable to address pending rules in other jurisdictions even if their immediate focus is GDPR . Also , 19.8 % report that their organisations ’ programmes are focused solely on GDPR without scalability , potentially leaving them unprepared to deal with new rules elsewhere .
Vestuto concluded : “ Other jurisdictions beyond the EU are enacting more stringent data privacy protections . Data privacy programmes should be scalable and requirements rationalised on a global basis to ensure that organisations are able to address current and pending rules in various jurisdictions as needed .”
Intelligent CIO Europe spoke to Steve Armstrong , Regional Director UK , Ireland and South Africa at Bitglass , who described the responsibilities companies face when managing their data . “ The vast majority of business enterprises are now using cloud services in some form , swayed by the promise of more efficient IT processes and the long-term cost benefits on offer . However , with the EU ’ s General Data Protection Regulation ( GDPR ) now in play , enthusiasm for the use of cloud applications could be somewhat dampened .
“
COMPANIES NEED TO TAKE THE TIME TO CAREFULLY UNDERSTAND THEIR NEW RESPONSIBILITIES .
52 INTELLIGENTCIO www . intelligentcio . com
CIO OPINION
A majority (56%) aren’t done discerning
what data third parties have or the potential
implications of GDPR on third party contract
management. Some (10.2%) have yet
to begin addressing third party GDPR
compliance at all. enforceable, according to 30.6% of
respondents. Surprisingly, 18.6% expect
discovery to actually become ea ͥ�ȁչ���)AH��M������ܸȔ�������Ё����������Ѽ)ѡ��ȁ�ɝ���ͅѥ��ϊd���͍�ٕ���Ʌ�ѥ��́�́�)ɕ�ձЁ���AH�х����������и)Y����Ѽ������胊q�����ѡ��������ЁAH)��������������������́�́ѡ�ɐ�����䁍���Ʌ��)���������и�U���ȁAH���ɝ���ͅѥ���)�ɔ�ɕ����ͥ������ȁ����ɥ����ɥم��)�ɽѕ�ѥ������T�ɕ�ձ�ѕ����ф�͡�ɕ��ݥѠ)�ȁ�͕����ٕ����́����͕�٥����ɽ٥���̰)ݡ����ɕ�եɕ́ѡ�͔��ɝ���ͅѥ��́Ѽ�����)ݡ��ѡ��ȁٕ����́�ɔ������ɕ��͕��ݡ��)��ф�ѡ�͔�ѡ�ɐ����ѥ�́������U���ѥ�����)ɕ����ѥ�ѥ�������Ʌ��́������ɕ������)��䁡��������ɔ�ѡ�ɐ����ѥ�́�ɔ�AH�)��������Ёݡ����ͥ�����ȁ�ɝ���ͅѥ���e�)T�ɕ�ձ�ѕ����ф��t��qٕ��ѡ�͔��ɽ���ͥ����́���͕�䁥�ٽ�ٕ����)AH��������������䁹�Ё�ձ�䁅��ɕ���є)ѡ���������ѥ��́ѡ����܁�ձ�́��䁡�ٔ)��ȁ��͍�ٕ��ɕ��ѕ��Ѽ�ɕ�ձ�ѽ�䁥��ե��)ɕ����͕̰���ѥ��ѥ���������ѕɹ�����ٕ�ѥ��ѥ��)�ɽ�������̰��́ݕ����́�ѡ�ȁ������́���ѡ���)��ͥ���͕̳�t�Y����Ѽ����ѥ�����)�͍�ٕ�䁍��������́�������Ȁ���)�͍�ٕ��ݥ��������ɑ�ȁ��ȁѡ���)�ɝ���ͅѥ��́��܁ѡ�Ёѡ��AH���)M���������䁥́��䁅́��ɔ)��ɥ͑��ѥ��́������ф��ɥم���ձ��)9��ɱ䁡�������ɕ��������̀���Ȕ��ͅ�ѡ���)�ɝ���ͅѥ��ϊd���ф��ɥم���ɽ�Ʌ����)�ɔ�͍�������Ѽ����ɕ�́���������ձ�́��)�ѡ�ȁ��ɥ͑��ѥ��́�ٕ�����ѡ��ȁ�������є)����́�́AH���ͼ�������ɕ���Ёѡ��)ѡ��ȁ�ɝ���ͅѥ��ϊd��ɽ�Ʌ���́�ɔ)����͕��ͽ���䁽��AH�ݥѡ��Ё͍���������)��ѕ�ѥ���䁱��٥���ѡ���չ�ɕ��ɕ��Ѽ�����)ݥѠ���܁�ձ�́��͕ݡ�ɔ�)Y����Ѽ������Ց��胊q=ѡ�ȁ��ɥ͑��ѥ���)��役��ѡ��T��ɔ�����ѥ�����ɔ���ɥ�����)��ф��ɥم���ɽѕ�ѥ��̸��ф��ɥم��)�ɽ�Ʌ���́͡�ձ�����͍����������)ɕ�եɕ����́Ʌѥ�����͕����������������ͥ�)Ѽ�����ɔ�ѡ�Ё�ɝ���ͅѥ��́�ɔ������Ѽ)���ɕ�́���ɕ�Ё�������������ձ�́���مɥ���)��ɥ͑��ѥ��́�́��������t)%�ѕ������Ё
%<��ɽ���������Ѽ�Mѕٔ)ɵ��ɽ����I���������ɕ�ѽȁU,��%ɕ����)����M��Ѡ��ɥ����Ё �ѝ���̰�ݡ����͍ɥ���)ѡ��ɕ����ͥ����ѥ�́��������́�����ݡ��)���������ѡ��ȁ��ф���qQ���م�Ё����ɥ��)�����ͥ���́��ѕ��ɥ͕́�ɔ���܁�ͥ��)���Ր�͕�٥��́���ͽ�����ɴ���݅啐���)ѡ���ɽ��͔������ɔ���������Ё%P��ɽ���͕�)����ѡ�������ѕɴ����Ё�������́�������ȸ)!�ݕٕȰ�ݥѠ�ѡ��W�é���Ʌ���ф)Aɽѕ�ѥ���I��ձ�ѥ����AH����܁�������)��ѡ�ͥ�ʹ���ȁѡ���͔�������Ր��������ѥ���)��ձ�����ͽ��ݡ�Ё���������+�p)
=5A9%L�9)Q<�Q-�Q!�Q%5)Q<�
IU11d)U9IMQ9)Q!%H�9\)IMA=9M% %1%Q%L�(��)%9Q11%9Q
%<)��ܹ��ѕ������э������