Join David Booth for an in-depth discussion in this video Considering external help and solutions, part of GDPR for Marketers.
- The GDPR is definitely important to the marketing function. But it also extends to many other areas of the organization. In addition to this, and as with any legal matter, ultimately, you'll need to make decisions around risks, costs, timing, and more. Then you'll have to plan, design, and implement the solutions, processes, and workflows that you decide on. Oh, and you probably have a day job and a business to run. The good news is that there is help out there if you need it. And there are three areas that you may want to consider, whether you use internal resources, external partners, or a blend of both.
First, there's the legal aspect. Once again, you can watch courses like this one, read articles and blogs, engage with your vendor partners, and even discuss GDPR at dinner parties. But at the end of the day, your legal decisions and legal advice need to come from the legal experts and reflect your own situation. You might have internal council that's well versed in the topic, but there's lots of options out there who specialize in privacy law, and even specifically GDPR. Second, there's clearly a technology aspect to getting compliant.
As just one example, in order to actually implement gaining and managing consent or responding to and complying with data subject rights around accessing, updating, and removing their data, it's probably not going to be efficient or even feasible to rely on manual processes. So you're left with the common scenario of build or buy. There are a number of technology solutions out there that have either added functionality to address one or more of these needs or have been built specifically for these purposes.
And going this route might either serve as your long term solution, or it might just be a short term bridge until you can build your own. Tag Management Systems, for example, are in a good position to serve up different consent forms based on all kinds of conditions. Customer Data Platforms, or CDPs, can connect to all the various places that your data is coming from and provide a single point from which to view, manage, and even activate all that data in one centralized place. Third, you might be in a position where your head is just plain spinning.
Or you simply don't have time or resources in the organization to even start down this path. If you need some external guidance or assistance with all this, you may want to look into some consulting services to help quarterback and even execute on the tactical steps of your plan. Remember, you're not alone in this. Nearly every organization is impacted in some way, shape, or form by the GDPR. And you can be sure that there's help out there if you need it.
- Define “personal data.”
- Name three data subject rights provided by GDPR.
- Recall the steps that need to be taken to comply with GDPR.
- Explain “privacy by design.”
- Identify the responsibilities of a data protection officer.
- Recognize the steps required to audit your data and processes.