GDPR Data Map
To comply with the GDPR and demonstrate compliance, organisations need to understand how they deal with personal data. In particular, they need to understand and record the categories of personal data they collect, from whom they collect it, where it is stored, how they process it, and how long they keep it. Epiq’s GDPR data map allows organisations and their advisors to assess and document their compliance and identify unforeseen or unintended uses of personal data.
There has been a huge increase in the amount of data which organisations create and store. However, retaining data without assessing the value of that data can increase the risk of breaching GDPR.
Epiq uses a range of best-in-class tools and technologies to help clients audit, cleanse, monitor, index, and assess their data, enabling them to retain business-critical information while establishing efficient and effective data governance processes to minimise the data they hold.
Subject Access Requests
GDPR reduces the response time and cost to individuals of making applications for subject access requests (SAR). This is likely to increase the number of SARs organisations need to deal with. Organisations will need to acquire the technical and operational capability to find every place that employee records could exist across global organisations, in multiple geographies, and with employees using different communication tools.
Epiq helps organisations implement repeatable, scalable, and cost-effective processes for responding to these requests. We help you to search, identify, retrieve, redact (where necessary), and export data from their systems in an efficient and defensible manner.
Data Protection Impact Assessment
GDPR requires controllers to undertake data protection impact assessments when an organisation’s processing of personal data is likely to result in a high risk to the rights and freedoms of individuals. Epiq helps organisations audit relevant data processing activities and produce an assessment report.