Historically all organizations have been compartmentalized into capabilities. This is not only to manage them better but also to ensure adequate control. But those were the days when either people were co-located, or if not, they had very frequent direct interactions. With organizations becoming global and most processes getting automated, inter-personal distance has superseded digital connectivity. People expect all instructions to be in digital form, so that they can process them accurately and dispassionately. These instruction data are processes. Instruction data can be processed only in conjunction with personal data. And in this context, personal data gains precedence over processes.
Process-driven data management is not just about technology and solutions. It is also about definition, planning, controls and monitoring. All companies must comply with regulatory and internal data guidelines. If not, they face monetary and / or reputational loss. They also need to follow the right processes – uniformly and continuously. Whether they use technology or people to do that is immaterial. Technology does help to do certain things faster and automatically. But the touch points of the technology with people must be well thought out. If things go wrong, people are going to be penalized not technology.
GDPR is one such regulatory compliance that must be communicated widely and consistently across the enterprise. There are several dependencies to ensure this type of communication, the most important ones being ‘process ownership’ and ‘communication channels’. These details are explained in better detail in our white paper Process-driven Approach to GDPR Compliance. Please download the free white paper to learn more about it. Comments and feedback are most welcome.