10 Steps for Reaching Global Data Privacy Compliance

 
 
By Darryl K. Taft  |  Posted 2016-09-05
 
 
 
 
 
 
 
 
 
  • Previous
    1 - 10 Steps for Reaching Global Data Privacy Compliance
    Next

    10 Steps for Reaching Global Data Privacy Compliance

    Serving customers effectively while meeting ever-changing global data privacy regulations is complicated. We offer 10 tips to help companies tackle these challenges.
  • Previous
    2 - Evaluate Regional Rules
    Next

    Evaluate Regional Rules

    Evaluate the regulations within the regions where you're conducting business and managing, transporting or handling customer data to ensure you are well aware of any and all region-specific regulations, as they can vary widely. For example, according to the Forrester Research Data Privacy Heat Map 2015, the Netherlands is one of the most restricted areas, while Nigeria has effectively no restrictions.
  • Previous
    3 - Provide Data Documentation
    Next

    Provide Data Documentation

    Document and understand the types of user data being captured and how that data is being used across your technology stack. This will be important for a number of reasons including potential opt-in requirements from customers, notifications in case of a breach and the potential need to delete this data due to inactivity of a given user.
  • Previous
    4 - Incorporate Requirements Into Company Processes
    Next

    Incorporate Requirements Into Company Processes

    Incorporate requirements for documentation, notifications, opt-ins and other activities mandated by these laws into company processes. Every piece of data should be handled and tracked in compliance with the necessary regulatory requirements. This stage includes folding new processes into how your company operates, such as including a least-privilege model to allow access to information on a need-to-know basis.
  • Previous
    5 - Create a Breach Notice Plan
    Next

    Create a Breach Notice Plan

    Create a breach notice plan that is in compliance with U.S. and other data breach laws that apply to your business. Breaches are inevitable and regulators require a timely response, particularly when personally identifiable information is at stake.
  • Previous
    6 - Brief Relevant Parties
    Next

    Brief Relevant Parties

    Brief all employees to ensure companywide participation. Departments must be fully committed to following updated regulations. This step encompasses all internal communications to employees and stakeholders that play a part in complying with global data laws. In a recent study, 87 percent of respondents said their jobs require them to access and use data, including customer information, contact lists, employee records, financial reports and corporate documents. As it happens "insider negligence" is the most common cause of a data breach.
  • Previous
    7 - Restrict Shadow IT
    Next

    Restrict Shadow IT

    When employees use unapproved technologies that are not protected under current IT policies, company data can be put at risk and may be noncompliant. By eliminating non-governed applications and programs, organizations can reduce risk and remain compliant.
  • Previous
    8 - Secure Customer Consent
    Next

    Secure Customer Consent

    Consent from customers is essential. It is crucial that a variety of customer data driven marketing programs have direct consent from consumers. In fact, some impending changes in the General Data Protection Regulation (GDPR) may force companies to gain consent from end users on a program-by-program basis.
  • Previous
    9 - Customers Need to Manage and View Profile Data Easily
    Next

    Customers Need to Manage and View Profile Data Easily

    Enable customers to manage and view profile data in a self-service fashion. Give them the ability to edit, update and remove data. In coming years, regulations in major markets around the world will require these end-user functions.
  • Previous
    10 - Understand Global Differences
    Next

    Understand Global Differences

    Understand the difference between the laws associated with different countries and regions of the world, as different requirements exist for each set of data. A different customer experience may be required, depending on where that customer is located.
  • Previous
    11 - Monitor New Policies and Changes in Old Ones
    Next

    Monitor New Policies and Changes in Old Ones

    Monitor and audit any policies that may arise or change. Data is continuously growing and evolving, so it is only natural that the regulations will evolve as well. Constantly auditing your business and monitoring global laws will help ensure privacy compliance on an ongoing basis.
 

With the globalization of the economy, businesses are looking across a greater, broader and more diverse set of customers to increase revenue. Customers worldwide have different ways to access businesses any time of the day and are sharing an ever-increasing volume of data with those companies. This presents a challenge to companies to ensure that they are using that data to serve these customers effectively and meet ever-changing and complex global privacy regulations. There has never been a more critical time for businesses to ensure they are meeting the expectations of customers for personalized service while remaining compliant with these regulations at all times. To meet the expectations of customers, companies are investing heavily in new technology, which makes it increasingly challenging to meet the compliance challenges from industry, state, federal and international privacy regulations across an increasingly complex marketing stack. Many organizations don't know where to start. To help tackle this challenge, eWEEK spoke with Jason Rose, senior vice president of marketing at customer identity management specialist Gigya, to come up with a list of 10 steps to achieving global privacy compliance.

 
 
 
 
 
 
 
 
 
 
 

Submit a Comment

Loading Comments...
 
Manage your Newsletters: Login   Register My Newsletters























 
 
 
 
 
 
 
 
 
Rocket Fuel