Below are some steps that every organization could follow:
Data discovery and Identification – Automated discovery of data assets and cataloging metadata and their respective schemas, definitions, types, sizes, and inter-dependencies. Personal and Customer data tends to be spread out across relational databases, archived records in a data lake / warehouse, and Distributed File System stores (e.g., Hadoop etc.). The Orion Governance platform supports all of these disparate technologies and can harvest data automatically.
Catalog external data sources – Vendor and third party data is often collected using different business processes than internal data, and may be used to enhance personal information through record matching and additional attributes.
Automatically document data flow and lineage – Data flow of various Critical Data Elements (CDEs) within the enterprise along with lineage is essential to ascertain where customer data moves, especially the primary customer identifiers, and sensitive personally identifiable data. Examples may be CRM systems like Salesforce, home-grown or SaaS applications such as email marketing), analytics tools, and other data stores. BI and/or reporting systems also tend to contain a lot of customer information that needs to be cataloged and included in the lineage process.
Implement a metadata repository and layer – Customer and prospect data may be spread across data stores, from transaction databases to marketing systems, under your control or through SaaS applications. A metadata layer is essential to help abstract different data sets and apply the proper restrictions on personally identifiable data.
Review data retention policies – While customer data cannot be deleted without a proper process in place, reviewing the company’s data retention policies with a metadata layer in place is a whole lot easier and provides the right level of visibility into these legal and regulatory processes that are essential for every company.
Orion Enterprise Information Intelligence Graph platform accelerates compliance in many specific areas
Orion EIIG Scanners discover all metadata (technical assets) to the finest grain
Orion EIIG Term2Asset, through pattern matching and machine learning algorithm, automates data mapping to business glossary
Data Portability & Transformation
Orion EIIG data lineage (technical and business) provides insights on how data moves, transforms across systems end-2-end
Data Consumption & Metrics
Orion EIIG dashboard provides metrics on how data is being reported or consumed across systems
Data Deletion (Right to be Forgotten)
Search on any data (field, job, task, report, etc) – and find out data flows (lineage) end2end throughout all systems to confidently delete the record
Orion EIIG Dashboard is configurable to meet reporting needs, in addition to REST API to extract data for external reporting