IDC PlanScape: EU General Data Protection Regulation Compliance
This IDC study provides guidelines for the adoption of the GDPR for all organizations to help them define a compliant information management strategy, including the data governance mechanisms and the desired technology architecture that can enable its implementation. It also provides guidance on the information strategy implementation by identifying the roles and the responsibilities of different stakeholders. The adoption of GDPR must be aligned with integrated processes, organizational aspects, and governance policies. This IDC PlanScape is based on IDC continuous research on IT security and privacy trends and its implications. The research incorporates findings from dozens of interviews and conversations with IT security and data protection practitioners, regulators, and vendors across Western Europe."The GDPR can drive significant operational and business benefits, but its implementation can be a complex undertaking for organizations and demands a step-by-step approach, based on a shared vision between the IT department, legal department, line-of-business owners, and the organization's board-level executives," says Pete Lindstrom, vice president of IDC's IT Executive Programs (IEP).