Don’t panic about GDPR. Don’t neglect either. Be happy.
Recently Ditte Brix Andersen of Stibo Systems wrote a blog post called Preparing for GDPR – Burden or Opportunity?
As Ditte writes, the core implication of GDPR is: “Up until now, businesses have traditionally ‘owned’ the personal data of their customers, employees and other individuals. But from May 25th, 2018 individuals will be given several new personal data rights, putting the ownership right back in to the hands of each individual”.
I agree with Ditte that the GDPR coming into force can be seen as an opportunity for businesses instead of a burden. Adhering to GDPR will urge you to:
- Have a clear picture about where you store personal data. This is not bad for business too.
- Express a common understood idea about why you store personal data. Also very good for business.
- Know who can access and update personal data. A basic need for risk handling in your business.
- Document what kind of personal data you handle. Equally makes sense for doing your business.
- Think through how you obtain consent to handle personal data. Makes your business look smart as well.
In fact, after applying these good habits to personal data you should continue with other kind of party master data and all other kinds of master data. The days of trying to keep your own little secret, even partly to yourself, versions of what seems to be the truth is over. Start working in the open as exemplified in the concept of Master Data Share.