Man on tablet

GDPR compliance as a catalyst for business transformation

Shirley Finnerty

Shirley Finnerty

Former M365 Lead

Read Time, 5 min.

GDPR:  An opportunity for broad business transformation – not just a compliance hurdle to clear.

Businesses affected by the European Union’s General Data Protection Regulation (GDPR) have the 25th May 2018 compliance deadline marked in their calendars. The new legislation is a milestone on a journey into a new era, where data is the fuel powering companies of all shapes and sizes, from all sectors.

The most recent report from the Office of The Data Protection Commissioner (ODPC) showed, it is a challenging landscape in Ireland, with a 26% increase in security breaches in 2017, with 2,795 breaches identified by the ODPC. The most common types of breaches reported to the ODPC were: inappropriate handling of personal data, loss of data held on devices such as USB keys and paper files, and network security compromises such as hacking and malware. The report also mentions several factors that contributed to these breaches, including: a lack of staff training, slowness to patch devices, poor password policies and failure to update antivirus software.

Consider this: 90 percent of all the world’s internet data was generated in the last two years. This exponential growth in the volume of data we generate – coupled with technology that can extract actionable, predictive insights from it – is empowering companies to offer more personalised experiences to customers, achieve unprecedented efficiencies and bring new products and services to market faster than ever.

Given this huge shift in Business, an updated governance framework for data protection is only sensible. But business leaders are realising that GDPR is an opportunity for broad business transformation – not just a compliance hurdle they need to clear. This is because the benchmarks GDPR sets out for compliance are the very same benchmarks a company needs to meet if it is going to become a data-driven business.

Generally speaking, there are two ways in which companies are approaching GDPR compliance – while the first is absolutely essential, the second is what will unlock major competitive advantages.

Countdown approach: when focus is limited to compliance  

One approach is to count backwards from the 25th and put a compliance calendar in place. This is a sensible method when resources are constrained and time is limited. In preparing for ‘GDPR-day,’ there are four steps to keep front of mind ensuring you stay on course.

The first step is to discover what data your company has and how it is used. Then establish processes to govern who manages this data. Then, you need to make sure it’s protected. Finally, you need to ensure you can offer transparent, clear reporting on how your customers’ data is treated should regulators require it.

Yet increasingly, companies are looking at an approach best described as ‘compliance+’, that goes beyond discovery, management, protection and reporting to anticipate potential future developments and preparedness. For example, opting for cloud vendors who are committed to complying with all relevant regulations – at a national, European and international level – provides added confidence.

Using GDPR to transform your business  

From complying to competing, companies that are using GDPR as a valuable milestone to drive business transformation will emerge with a significant advantage. They are already empowering their people to seamlessly collaborate and access information, anywhere and across any device. In addition, they see the potential of using technology like artificial intelligence (AI) and machine learning to stay a step ahead of customer needs and competitive threats.

However, leaders in these organisations know that technology alone is not enough. Innovations like AI have a lot of potential, but if employees are not properly capturing, storing, using and protecting data, the value the technology offers is diminished. After all, only accurate data can yield dependable insights. Further, all the insights in the world won’t help your business if workers across your business aren’t actively using them as part of their everyday jobs.

Savvy businesses recognise that the ability to manage and protect data is not only a compliance necessity, it’s a must for building trusted relationships with customers. According to Harvard Business Review, 97% of people expressed concern that their online personal information might be misused. As every company becomes a data-driven company, being able to offer full transparency around data usage and data policies will be key.

Given the importance of data management, forward-looking leaders see GDPR as a way to help build a data driven culture in which each person – from intern to CEO – sees him or herself as a data champion. Using GDPR as a ‘hook,’ they use the opportunity to clearly communicate their vision of how data will take their businesses forward in a cloud-first world. This means ensuring employees across divisions understand their role in using data responsibly to delight customers, unlock growth opportunities and ultimately outperform their competition.

Mayo County Council is the lead authority in the western region for climate action, requiring collaborative work from staff in a number of counties along the Irish Western Seaboard. By introducing Microsoft Teams, personnel at various locations can securely share files and participate in virtual meetings via Skype for Business as part of their work to develop climate change strategies and assist in their moves to meet the demand of GDPR. “Good records and document management play an important role in GDPR compliance,” says Liam Hanrahan, Acting Director of Services for Communications, IS and Corporate Development at Mayo County Council. “File sharing in the cloud avoids unnecessary duplication. The amount of storage you can lose simply by keeping copies of everything is significant.”

The bottom line for business leaders: recognising 25 May as a catalyst for growth sets you up to thrive as we enter the new data age.  

Find out more information to support your organisation’s compliance journey here.

 

Shirley Finnerty

Business Group Lead

Free eBook: Five questions executives should be asking their security teams

See what questions you need to ask about your organisation’s security measures

Discover more related articles per industry:

Education

  • A guide to GDPR for universities

    A guide to GDPR for universities

    With the EU’s new General Data Protection Regulation coming into effect on May 25, understand how universities like yours can take the right steps towards compliance with this free eBook – and other useful resources. Your university on a journey on a journey Your university is on a journey with lots of ‘data subjects’. They’re […]

Government

Healthcare

  • Two female nurses having a virtual conversation through Microsoft Teams

    Belfast Trust: Reimagining patient care

    “There have been many heroic actions by our staff but we’re not heroes for what we’ve done – I’m just glad we could do our bit to help.” Paul Duffy, Co-Director of IT and Telecommunications at Belfast Trust, is talking about the monumental impact COVID-19 has had on the healthcare sector and how virtual consultations […]

  • Patient consultation using Microsoft Teams

    Improved Quality of Life for Cystic Fibrosis Patients through use of Microsoft Teams for Consultations

    Improved Quality of Life for Cystic Fibrosis Patients through use of Microsoft Teams for Consultations at University Hospital Limerick   Pilot programme reduces infection risk and improves therapy outcomes for patients and clinicians Part of the Health Service Executive (HSE) in Ireland, University Hospital Limerick (UHL) has been piloting online consultations using Microsoft Teams for […]

Manufacturing

  • Etex

    Etex uses modern tools to unite its business and better focus on customers

    When it comes to construction, all components must come together in a timely manner in order to produce the optimum product. While Etex, a Belgian building solution manufacturing company, helps make this a reality on a day-to-day basis, it wanted to find a way to enhance productivity and collaboration internally. With locations across more than […]

Retail

  • GDPR and Retail: Four GDPR requirements and how Microsoft can help

    GDPR and Retail: Four GDPR requirements and how Microsoft can help

    Learn how we can help you meet GDPR requirements with solutions available today: Assessing your current risk profile “How do I understand where I am already compliant and where I need to focus next?” This is one of the most common questions from retailers in regard to the GDPR. It’s also one of the hardest to […]

  • HeadBrands is ready for the future with Microsoft 365 Business

    HeadBrands is ready for the future with Microsoft 365 Business

    Since its creation in 2010, HeadBrands has continued to grow, rapidly becoming the leading retailer of hairdressing products in Scandinavia. HeadBrands needed a modern IT solution to increase its business productivity and improve collaboration, both within the company and externally. Its response to this challenge was to replace most of its previous services with Microsoft […]

Discover more related articles per dossier:

Customer Stories

  • A boat in Soderhammns

    Risky, unsecure file sharing inspired this government. Here’s why.

    “This file is too large to send.” We’ve all done it. When time is of the essence, and a large file won’t go where we want it to go, risky public file-transfer methods are suddenly a very appealing option. Security goes out the door in place of convenience. For local governments this creates a systemic […]

Digital Transformation

Press

  • 2 people meeting with two surfaces on the table

    Winning the war for talent – the power of digital culture

    Winning the war for talent – the power of digital culture For the first time in history, we now have four generations in the Irish workplace – some organisations have as many as five generations working together. For business leaders, it means that finding and cultivating the best talent has never been more important – […]

Security & Privacy

Tips

  • A woman holding a white mug

    Working from home. What I’ve learned as an early adopter.

    I guess you could call me an ‘early adopter’ of remote work. About 15 years ago, I was responsible for mobility and convergence at a large telecoms company when those concepts were in their infancy. So, I decided I’d try to practice what I’d be preaching all day, and insisted on working remotely as often […]