While the May 25 GDPR compliance deadline has passed, there are still companies who are not fully GDPR compliant. Currently, we are meeting customers that fall into one of these three categories:
Fig 1: GDPR Controls Spider Web
NNIT's DPIA methodology and tool includes stakeholders from business, IT, and Legal, and NNIT's GDPR Agile Delivery Model is no different. The right hand (business), the left hand (technology), and the middle (governance) have to work together and the only way to come within striking distance is to go Agile with very few days remaining until May 25.
Usually we start customers up in Step 2 and 3 simultaneously, running short sprints (1 week), and ensuring that decisions or outcomes from these steps are continuously checked against any new findings/risks from Step 1.
Fig 2: GDPR Agile Delivery Model
NNIT is ready to help you through these 3 steps. As a full service provider, we have management consultants, technology consultants, and a wide range of vendors and suppliers that can help kick-start your GDPR program. Below are some key takeaways that we would like to leave you with.
If you would like to learn more, please reach our to Steve Peacock, Consulting Director & GDPR Offering Lead at firstname.lastname@example.org or +45 30778428.