In Microsoft, we believe privacy is a fundamental human right.
According to Microsoft GDPR survey in November 2017, “47% of executives were unsure about what data compliance standards applied to their organizations”. While Microsoft has announced globally to extend its data privacy tool to individual users of our company products and services worldwide, it is our prime concern that our clients are fully empowered to comply with GDPR which took effect on 25 May, 2018.
Accelerate GDPR Compliance with Microsoft
Over 100 business leaders joined our “Accelerate GDPR Compliance with Microsoft” Forum to get advice on GDPR requirements, risk assessment and key actions for companies to take in the journey of GDPR from Microsoft as well as KMPG experts. As data has become the most valuable resources, it is crucial for companies to comply with the requirements gain better customer insights from improved data, so to differentiate the company’s position and improve ROI on marketing initiatives.
To do so successfully, an organization should focus on its IT strategy to have:
- Tighter controls on how to manage and protect personal data
- Better data governance tools for better transparency, record-keeping and reporting
- Improved data policies and processes to support data subject rights and ensure lawful processing
“Managing compliance, especially for multi-national organizations, is a complex task that is difficult for any organizations to navigate…Our goal is to make it easier for you.” Srinivasan Kannan, GDPR & Microsoft 365 Lead, and Anil Malekani, Global Black Belt, Enterprise Mobility & Security of Microsoft illustrated how Microsoft Compliance Manager delivers real-time risk assessments on Microsoft cloud services, to enable companies manage compliance in a central place.
Eddy Chan, Digital Advisor of Microsoft, advised that most companies should engage with legal or organizational advisory firms to help assess privacy policies, business processes and map those to the GDPR regulations and controls, to establish a gap analysis and then create a GDPR program to fill in the gaps.
Bhagya Perera, Director, Management Consulting, KPMG China explained the impact of GDPR on businesses, and what are the key action steps to put in place to embed GDPR into business as usual: define data privacy strategy, assess existing compliance condition, implement planning and align delivery.