Comprising over 173 regulations and 99 articles, GDPR includes mandates, repeals, exceptions and responsibilities for all organizations to ensure that personal data of EU residents is protected. So, organizations can expect significant changes with the rollout of GDPR.
To help organizations become ready to encounter the situation while securing their businesses, Infosys has designed a unique GDPR offering. It helps achieve GDPR readiness by assessing the current state, designing the future state, implementing the required changes, and managing and securing the renewed compliance. This Infosys framework derives key questions and drivers for compliance from the standpoint of GDPR’s key focus areas.
Extended territorial scope
Non-EU Organizations which process personal data of EU residents or provide services to EU residents will need to adhere to new regulation
Organizations should develop interoperable formats that enable data portability
Privacy impact assessment
Organization processing the data will be required to conduct privacy impact assessments
Notification of breach
Organizations need to report data breaches within 72 hours after breach
Privacy by design
Data protection principles should be adopted into product/project design process
Consent and Profiling
Organization must inform data subjects of the existence and consequences of any profiling activities which they carry out and obtain explicit consent from data subjects
Erasure/Rectification of data
Data subjects have right to ask for rectification or right to be forgotten
Data Protection Officer
Every member state needs to have an appointed supervisory authority who will interact with DPO (Data protection officer) at Controller/Processor level
As an end-to-end solution from Assessment to Security, the Infosys GDPR offering ensures business continuity along with readiness towards GDPR. Our consultants and technology experts help organizations perform assessments, define roadmaps, design architecture, implement & manage solutions, and enable audits, training and change management. Infosys GDPR platform, as a part of the overall solution offering, enables integration of various product suites offered by its partners. Our accelerators expedite solution implementation at each stage of the compliance journey.
Our proprietary ADAM framework-based approach offers easy customization and productivity gain that transforms an organization to a state where it is not only regulation acquiescent, but also an efficient counterpart.