Protecting Personal Data in Enterprises - Technologies and tools for achieving GDPR Compliance in GN Audio A/S

Hang Thu Pho

Studenteropgave: Masterprojekt

Abstrakt

The European Union updated its data privacy laws in May of 2016 to create a new General Data Protection Regulation (GDPR), representing the biggest change to data protection law in many years. Despite being aware of the incoming rules, however, many companies are still lagging on their preparations. This study reviews how personal data is defined and classified by the GDPR and compares it to another popular term Personally Identifiable Information (PII). Grounded on the GDPR’s key requirements, this study investigates the real GDPR Compliance Program at GN Audio A/S in order to get a better understanding of main obstacles facing organizations in becoming GDPR compliant. As personal data is part of the Corporate Data, three main challenges are revealed including (1) Corporate Data Classification, (2) Corporate Data Flow Mapping and (3) Corporate Information Security. Personal data should be therefore classified, mapped out and protected from a wider initiative, not only for the GDPR purpose. Finally, this study attempts to give some recommendations on the technologies and tools for GN Audio A/S to achieve compliance.

UddannelserDatalogi, (Bachelor/kandidatuddannelse) Kandidat
SprogEngelsk
Udgivelsesdato29 jan. 2018
Antal sider60
VejledereHenning Christiansen

Emneord

  • General Data Protection Regulation (GDPR)
  • Data Flow Mapping
  • Data Leakage/Loss Prevention
  • Personally Identifiable Information (PII)
  • Data Classification
  • Process Mining
  • Information Security