|Search and scan current systems including legacy systems, databases and unstructured data for personal data and provide Assessment Report (Data Profiling).|
|Make your public facing systems (CRM, Website, Marketing, etc.) opt-in compliant, by creating new screens and workflow capabilities including automated e-mail communication and action with the personal data subject.|
|Identify and remove (forget) personal info, when there is no longer a business purpose for retaining it or when a person requests it be erased (Data Profiling). Another measure would be to tag an expiry date or expiry event during creation of the personal info itself (MDM Governance).|
|Have control over what personal data gets into your organization, in other words a well implemented MDM solution.|
Though you might have undertaken “GDPR Compliance Initiative” already to meet the May 2018 deadline, there would be business interruptions such as acquisitions and mergers, which would necessitate GDPR Compliance to be revisited, and not to mention ongoing “Stay Compliant” requirements.
Companies who are deemed non-compliant with GDPR face stiff penalties of up to 4% of global annual revenue or €20 million, whichever is greater.