Use Case GDPR Compliance

The challenge

The European GDPR legislation stipulates that you must have a global and continuously up-to-date view of the personal data owned and processed by your company. Thorough data mapping is essential to be able to address the critical aspects of GDPR: managing data subject rights, creating a processing register, designing a data and technical process inventory, and so on…

Organisations store a wealth of data in different environments. As a result, the identification and mastering of personal data across all systems for GDPR compliance can be a nightmare.

The common approach

Many organisations rely on manual audits for the identification of the personal data they process. These projects last for several months or even years, involve many in-house resources and typically don’t lead to a comprehensive map of the personal data. Moreover, this type of data mapping is descriptive and doesn’t ensure that the GDPR compliance will be met over time due to the lack of a real-time connection between the data map and the actual data.

How DataSemantics accelerates and simplifies the project

DataSemantics’ intelligent and automated technology enables you to quickly perform a comprehensive data mapping. This objective data map is kept up to date as the data evolve in order to maintain RGPD compliance at all times.

The identification of personal data is carried out using predefined semantic concepts. The relevant data are automatically located across all systems and the results of the analysis can be explored in depth, down to the level of metadata and actual data.

Specifically, by accessing a sample of data, the user is able to explore the data in each table and in each column and to validate or reject the validity of a concept. The user can also pinpoint flawed data resulting from coding errors during the input process.

An actual example

With DataSemantics you are able to extract the individual register by exploring your databases in real time. A simple search allows you to identify a person’s data across information systems, both in databases and unstructured files (Excel, Word, …). After having validated the results of the query, you can extract this information and thus create the individual register of the data subject.

Benchmark

An automotive company wants to map its personal data to ensure GDPR compliance. This B2C company employs more than 600 people and is present in 3 countries with 31 branches. It assessed both methods before entrusting us with the project. Their decision was taken as a result of the following analysis:

Liberate and master all of your data

DataSemantics supports you in taking back control of all of your data. The reverse engineering technology at the heart of the tool drastically speeds up a variety of data projects. The software liberates known and unknown data and makes them accessible to information systems. It enables organisations to fully master information assets, limit risks and make better strategic decisions.