. home.aspx



How to manage data and the GDPR right to be forgotten

July 31, 2018 / George Lawton

The General Data Protection Regulation requires organizations to delete personally identifiable information if customers ask -- which can be a challenge. Experts offer four tips. Enterprises doing business in the European Union need to be able to address the General Data Protection Regulation's right to be forgotten clauses or face hefty fines. The new regulations expand the definition of personally identifiable information to include data like IP addresses and pictures. This can be challenging, since data managers may not know where all PII data is stored or how to easily delete it. Furthermore, employees may generate shadow data containing PII that also needs to be reduced or eliminated. Some good practices for complying with the GDPR include coming up with a clear policy and surveying business intelligence. In addition, it's important to set a practice for indexing emails that include PII. Enterprises should also consider improving understanding of the use of PII outside the...