Data Governance, Privacy and Regulation

October 24, 2016 Jack Vawdrey

computer mouse and gavel on laptop keyboard

When it comes to regulations surrounding data privacy and data governance in the US, the policy books have remained relatively empty. For the most part, whatever data a company can collect about their users belongs to the company.

With citizens of the EU, however, it’s a different story.

Members of the European Commission have taken several proactive measures to ensure the rights of their constituents’ data inside and outside of EU borders. This includes the Safe Harbor Agreement, the General Data Protection Directive and the Privacy Shield.

But step aside, extant data privacy regulation. Here comes GDPR.

GDPR, or the General Data Protection Regulation, will be replacing the current General Data Protection Directive in May 2018. This new collection of regulations will instate stringent regulations to protect the rights of data subjects and their personal information.

And it doesn’t just apply to EU businesses.

Any organization that collects data from EU citizens will be required to comply with GDPR regulations or forfeit the right to gather user data in the European Union. Companies will be required to demonstrate that they provide the necessary safeguards to data privacy.

And GDPR has provisions to allow EU citizens to enact legal action in countries outside of the EU in situations of infringement of data privacy or rights.

It’s a pretty big deal.

Are you ready?

Getting your company ready for the May 2018 implementation will be a challenge.

Studies done by Dell reveal that “[n]early 70 percent of respondents say their organization is definitely not or don’t know if their organization is prepared for GDPR today, and only three percent of these have a plan for readiness.”

Many companies don’t know how to answer questions such as:

  1. What is the process of reporting a data breach to a supervisory authority?
  2. How does pseudonymous data fit into GDPR’s regulations?
  3. Will companies participating in Privacy Shield be in compliance with GDPR?

These questions are important items to consider when structuring a data governance initiative. While data governance to protect the privacy of data subjects has always been a concern, it is especially the case now.

Data Governance and the Customer Experience

Data governance goes beyond simply complying with regulation in order to extract data from users in your market. Chris Slovak, VP of Global Solutions Consulting at Tealium, recently said:

“Organizations need to focus on data governance not just because of the legal ramifications but the effect that leakage and security events have on the brand itself. As an industry we owe it to end customers to be transparent and ethical with data, ensuring that what is collected and known is used for the purposes of better experiences for those end customers. The precursors to massive change in our space are clear. Now we as an industry need to adapt before we are forced to.”

The way that a user’s data is used is integral to the customer experience, and not just when it comes to personalization and A/B testing. Customers like to know that if they submit data, that data is used responsibly.

GDPR is a reflection of a public that desires accountability on the part of data collectors and processors.

How do your customers feel about giving you their personal information? What effect does that have on your brand? Is your business suffering because your data governance strategy leaves customers feeling digitally vulnerable?

You need a data governance strategy that not only complies with the necessary requirements for participation in all markets, but also fosters a customer-centric, data-driven product or service.

At the Analytics Summit to occur November 17, 2016, Chris Slovak will be discussing data governance strategy (now available on-demand). This presentation will include insights on:

  • The current state of data governance in the industry
  • The impact of current and future rulings on short-term projects
  • 5 high-level areas of focus to prepare your business for upcoming regulations

To learn more about data governance in the looming shadow of the GDPR, along with additional actionable best practices from experienced analytics thought leaders, watch   the 2016 Analytics Summit.

chris-slovak-observepoint
Chris Slovak A picture of Chris Slovak

 

About the Author

Jack Vawdrey

A former student and present enthusiast of the humanities, Jack Vawdrey uses his love of language to explore the role of marketing and analytics technology in business. Jack joined the ObservePoint marketing team in August 2016 and serves as Managing Editor. Adamant about automation, Jack writes to educate the analytics and marketing community about the role of tag auditing and data governance in the enterprise.

LinkedIn More Content by Jack Vawdrey
Previous Article
Keep It Simple with Google Analytics
Keep It Simple with Google Analytics

This article explains some of the functional benefits of using Google Analytics.

Next Article
Adam Greco: Being Successful in Analytics
Adam Greco: Being Successful in Analytics

This article spotlights Adam Greco, one of the keynote speakers at this year's upcoming Analytics Summit.

Free Website Audit

START NOW