The GDPR doesn’t have to be hard with NodeGraph
Are you prepared for the changes that are occurring within data regulation? Perhaps you are unsure of what exactly is going to change? Let us help you understand the GDPR is and how NodeGraph can help you along the way.
The General Data Protection Regulation
On the 25th of May 2018, the new General Data Protection Regulation (GDPR) will be enforced. As presented by General Secretariat of the Council, the main goal of this new legislation is to unify the data privacy laws for companies operating in Europe. This will apply to organizations that have their data controller, data processor and/or data subject within the bounds of the EU, encapsulating almost all global organizations. The GDPR will entail changes to the following:
Data subject rights
As explained more thoroughly by the Information Commissioner’s Office, this includes everything from the subject’s right to access their data at any given time to their right to rectify, object to and delete data. Basically, a data subject will have the right to find out who has access to their data, who has accessed their data in the past, as well as where their data is located.
Furthermore, it is essential that the subject gives proper consent prior to their data being used and is notified if their data is ever compromised. There is also new legislation related to transferring a subject’s data to a country outside of the EU.
Accountability and responsibility
The GDPR will also introduce the “Data Protection by Design and by Default” clause. This addresses the need to design new systems with privacy at the core, rather than as an addition. For a lot of companies, this will mean that their current systems need to be heavily restructured.
Additionally, organizations will also be liable to notify DPAs, consumers, and controllers of any breach that may “result in a risk for the rights and freedoms of individuals” within 72 hours of discovery. If data security is ever jeopardized, the organization is further required to perform a risk assessment as a means of containing the problem.
The GDPR will see a removal of the need to notify each separate DPA (Data Protection Authority). Instead, organizations will only need to contact the DPA within the member state where their main organization lies, simplifying this process.
If, come May, you are found to be violating these new laws, you may face fines up to 4% of your organization’s annual global turnover or €20 million. Needless to say, if you haven’t already put this at the top of your list, you need to do so now.
NodeGraph – The Solution
Ultimately, the GDPR contains regulations spanning across organizational, juridical and technical elements. Our GDPR Module focuses on the technical, helping you comply with the new regulations by making it easy for you to keep track of the personal data stored in your Qlik Solution.
Create customized GDPR reports
Our GDPR Module allows you to generate a GDPR report on a field of your choosing. This report contains information answering the following questions:
- Who currently has access to the data?
- Who has accessed the data in the past?
- What is the purpose of the data storage?
- Where is the data located?
This report thereby makes it clear to the data subject how their data is being handled as well as making it easy for you to identify data related to specific a data subject (or field).
Your report is generated automatically
After you enter the NodeGraph GDPR Module, you simply select which field you want to track. Following this, you can choose what information you want the report to include. And that’s it.
(You can also modify and create reports straight from The Dependency Explorer).
The report is generated automatically, eliminating the manual steps required without such a function. Ultimately, it’s about securing control of personal data and being able to identify individuals within a company.
If you are looking for more information about our GDPR module, you can find additional resources on our Resources page. Or, even better, get started today to see how it works first-hand.