Technology for managing personal data post GDPR We
- Slides: 8
Technology for managing personal data post GDPR
We have developed Uni. Fida to meet the following key GDPR technology implications Your personal data must be held securely You need to document what personal data you actually hold You will need an accurate Single Supporter View in order to identify individuals and respond to subject access requests You will need to store permissions as provided, including the circumstances of their provision You will need to be able to respond to individual requests to amend their personal data, see it, be sent a copy of it, or have it deleted When forgetting an individual you will need to ensure that all copies of their personal data, in all your systems, can act on this instruction You will need to autoanonymise historic personal data for which there is no longer a purpose
Implicit in GDPR is the assumption that individuals and their personal data can be identified by an organisation Without a single customer view full compliance becomes impossible Single supporter view technology makes smart use of changing identifiers bringing data into greater focus at an individual supporter level But we change our identifiers all the time - our emails, cookie IDs, mobile numbers and even addresses are not constant 1 A single customer view
GDPR specifies how consents and optouts are to be managed 2 A central permissions database Requiring each consent to have a record of the date, detail and circumstances in which it was provided But customers may also provide multiple and at times conflicting consents through multiple channels A central consent database linked to the single customer view becomes a fundamental requirement
GDPR gives data subjects rights to view all the data you hold on them; they may ask to have it posted or emailed to them 3 Allowing agents to fulfil data subjects’ requests A single customer view must therefore include the capability to search for individuals They may then wish to amend the permissions already granted we provide a traffic light presentation for permissions as currently set In addition they may ask to have their personal data amended or deleted we delete what is strictly personal data but maintain e. g. donation history
Following each request to be forgotten, instructions to delete their personal data need to be automatically passed on to any other systems holding copies of that personal data Covering all aspects of anonymisation The technology also needs to be able to identify situations where individual personal data is no longer being held for a useful purpose, according to rules you agree For these categories auto-anonymisation of personal data needs to take place
An example Uni. Fida GDPR configuration
The technology is hosted by UK Fast in Manchester Unifida is simple to set up, cloud based technology, built to help you deal with GDPR Set-up is swift; it should include both your web browsing personal data, and your off-line information Your staff can all have access to Uni. Fida to deal with GDPR requests We can help you configure Uni. Fida so that you are fully compliant
- Unifida
- Information technology resource management
- Hospitality technology systems
- Strategic issues in managing technology and innovation
- Managing your personal finances textbook answers
- Personal communication in marketing
- Chapter 17 managing business finances worksheet answers
- Direct interactive marketing
- Data cube technology in data mining