GDPR will be introduced on 25th May 2018 and will apply to all companies processing Personal Identifiable Information (PII) of citizens residing in the EU, regardless of the company’s location. Developing data and records management policies will help organisations work towards GDPR compliance.
Records and information management (RIM) is the systematic control of all records, regardless of media, from their creation or receipt, through their processing, distribution, organisation, storage, and retrieval to their disposition.
Information flows through organisations in the form of paper and electronic records, such as word processing documents, spreadsheets, e-mail, graphical images, and voice or data transmissions. Information can be stored on a variety of storage media, such as microfilm, microfiche, diskette, optical disk, CD-ROM, videotape, and paper.
Apogee can help to develop an RIM policy that not only works towards the strict GDPR requirements around data management and protection, but also:
Organisations have many different ways in which data is stored and used, so this tactic will require careful consideration in each case to create a customised plan, but one that is based on simple, repeatable standard practice.
The components of an effective RIM program that may be activated by the records manager include:
Organisations can work towards GDPR compliance by establishing practices that fulfil their data and RIM policies. By separating PPI from business data at source and capturing, storing, segmenting, using, destroying and auditing all data in a compliant manner, heavy financials penalties of up to 4% of annual global turnover, or €20 Million (whichever is greater) can be avoided.
Get in touch today and discover how Apogee can help your organisation develop a strategy for GDPR compliance before the 25th May 2018 when the new regulation will come into force.
Share this article: