So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge...
Transcript of So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge...
![Page 1: So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge (48%). • Reducing storage via defensible deletion (35%) . Source: AIIM Industry](https://reader034.fdocuments.net/reader034/viewer/2022050212/5f5ea8e4bbbf6e0f0a260f42/html5/thumbnails/1.jpg)
So You Think GDPR Doesn’t
Impact You? Think again!
© Bob Larrivee Consultancy 2018
Presented by:
Bob Larrivee
President/Founder
Bob Larrivee Consultancy
www.boblarriveeconsulting.com
Twitter: @BobLarrivee
![Page 2: So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge (48%). • Reducing storage via defensible deletion (35%) . Source: AIIM Industry](https://reader034.fdocuments.net/reader034/viewer/2022050212/5f5ea8e4bbbf6e0f0a260f42/html5/thumbnails/2.jpg)
What is GDPR?
©Bob Larrivee Consultancy 2018
![Page 3: So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge (48%). • Reducing storage via defensible deletion (35%) . Source: AIIM Industry](https://reader034.fdocuments.net/reader034/viewer/2022050212/5f5ea8e4bbbf6e0f0a260f42/html5/thumbnails/3.jpg)
GDPR In A Nutshell
©Bob Larrivee Consultancy 2018
• More rigorous data security measures to protect the confidentiality,
integrity and availability of personal information, including provision for
technical measures such as encryption.
• A higher bar for obtaining consent, which must be in the form of
a clear affirmative action.
• New breach notification provisions with considerably more teeth
• The need to offer a choice by which data subjects may opt out
• The ability for the data subject to access, correct and delete any
inaccurate information, including a “right to be forgotten.
• New governance over data and data processes, including
specific appointments of a Chief Privacy Officer (CPO)
![Page 4: So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge (48%). • Reducing storage via defensible deletion (35%) . Source: AIIM Industry](https://reader034.fdocuments.net/reader034/viewer/2022050212/5f5ea8e4bbbf6e0f0a260f42/html5/thumbnails/4.jpg)
Many More
©Bob Larrivee Consultancy 2018
The Nevada Open Meeting Law • Give at least 3 days’ advance notice to the public of a meeting, with
the time and place of the meeting and an agenda
• Allow public comment, either at the beginning and the end of the
meeting, or after each agenda item on which action may be taken but
before such action is taken
• Provide copies of materials.
• Minutes of public meetings must be kept and are public records.
The California Consumer Privacy Act of 2018
• Fundamentally based on the GDPR
• Many overlapping requirements
• Most stringent regulation in the US
• Many more States considering similar regulations
• Potential future Federal regulation
![Page 5: So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge (48%). • Reducing storage via defensible deletion (35%) . Source: AIIM Industry](https://reader034.fdocuments.net/reader034/viewer/2022050212/5f5ea8e4bbbf6e0f0a260f42/html5/thumbnails/5.jpg)
Businesses Can’t See The Forrest Through The Trees
©Bob Larrivee Consultancy 2018
![Page 6: So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge (48%). • Reducing storage via defensible deletion (35%) . Source: AIIM Industry](https://reader034.fdocuments.net/reader034/viewer/2022050212/5f5ea8e4bbbf6e0f0a260f42/html5/thumbnails/6.jpg)
Businesses Need A More Holistic View
©Bob Larrivee Consultancy 2018
![Page 7: So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge (48%). • Reducing storage via defensible deletion (35%) . Source: AIIM Industry](https://reader034.fdocuments.net/reader034/viewer/2022050212/5f5ea8e4bbbf6e0f0a260f42/html5/thumbnails/7.jpg)
It Is What’s Driving Information Governance?
©Bob Larrivee Consultancy 2018
• Compliance and Data Loss
• Increase in Data Related
Incidents
• Poor Email Governance
• Managing Paper Records
![Page 8: So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge (48%). • Reducing storage via defensible deletion (35%) . Source: AIIM Industry](https://reader034.fdocuments.net/reader034/viewer/2022050212/5f5ea8e4bbbf6e0f0a260f42/html5/thumbnails/8.jpg)
Compliance and Data Loss
©Bob Larrivee Consultancy 2018
• Compliance (61%) and preventing data
losses (51%) are biggest drivers.
• Creating searchable knowledge (48%).
• Reducing storage via defensible deletion
(35%) .
Source: AIIM Industry Watch
![Page 9: So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge (48%). • Reducing storage via defensible deletion (35%) . Source: AIIM Industry](https://reader034.fdocuments.net/reader034/viewer/2022050212/5f5ea8e4bbbf6e0f0a260f42/html5/thumbnails/9.jpg)
Data Related Incidents
©Bob Larrivee Consultancy 2018
• 51% have had a data-related incident.
• 16% suffered a data breach, half from
external hacking and half from staff.
• Staff negligence or bad practice is most
likely cause of data loss (22%).
• Source: AIIM Industry Watch
![Page 10: So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge (48%). • Reducing storage via defensible deletion (35%) . Source: AIIM Industry](https://reader034.fdocuments.net/reader034/viewer/2022050212/5f5ea8e4bbbf6e0f0a260f42/html5/thumbnails/10.jpg)
Poor Email Governance
©Bob Larrivee Consultancy 2018
• 41% describe their email management as
“chaotic”.
• 16% have fixed delete-all policies, 19%
keep everything.
• 16% dedicated archive with defined
retention and hold.
• 8% use ECM/RM
• Source: AIIM Industry Watch
![Page 11: So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge (48%). • Reducing storage via defensible deletion (35%) . Source: AIIM Industry](https://reader034.fdocuments.net/reader034/viewer/2022050212/5f5ea8e4bbbf6e0f0a260f42/html5/thumbnails/11.jpg)
Paper Records
©Bob Larrivee Consultancy 2018
• 33% increasing (10% rapidly)
• 39% decreasing (10% rapidly)
• Source: AIIM Industry Watch
![Page 12: So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge (48%). • Reducing storage via defensible deletion (35%) . Source: AIIM Industry](https://reader034.fdocuments.net/reader034/viewer/2022050212/5f5ea8e4bbbf6e0f0a260f42/html5/thumbnails/12.jpg)
How Bad Can It Be?
©Bob Larrivee Consultancy 2018
• 1,579 data breaches reported in 2017.
• 178,955,069 records exposed.
• 790 breaches reported as of August 14,
2018.
• 27,318,503 records exposed.
• Breach Breakdown
• 361 reported by Businesses
• 213 reported in Medical/Healthcare
• 96 reported in Banking/Credit/Financial
• 64 reported in Government/Military Source: Identity Theft Resource Center
![Page 13: So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge (48%). • Reducing storage via defensible deletion (35%) . Source: AIIM Industry](https://reader034.fdocuments.net/reader034/viewer/2022050212/5f5ea8e4bbbf6e0f0a260f42/html5/thumbnails/13.jpg)
Governance – Rules Are Needed
©Bob Larrivee Consultancy 2018
• 1,579 data breaches reported in 2017.
• 178,955,069 records exposed.
• 790 breaches reported as of August 14,
2018.
• 27,318,503 records exposed.
• Breach Breakdown
• 361 reported by Businesses
• 213 reported in Medical/Healthcare
• 96 reported in Banking/Credit/Financial
• 64 reported in Government/Military Source: Identity Theft Resource Center
![Page 14: So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge (48%). • Reducing storage via defensible deletion (35%) . Source: AIIM Industry](https://reader034.fdocuments.net/reader034/viewer/2022050212/5f5ea8e4bbbf6e0f0a260f42/html5/thumbnails/14.jpg)
What Governance? What Rules?
©Bob Larrivee Consultancy 2018
• 22% have none, or just have plans.
• 15% with enterprise wide IG policies
• 28% mixed across departments.
• 36% somewhat immature.
Source: AIIM Industry Watch
![Page 15: So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge (48%). • Reducing storage via defensible deletion (35%) . Source: AIIM Industry](https://reader034.fdocuments.net/reader034/viewer/2022050212/5f5ea8e4bbbf6e0f0a260f42/html5/thumbnails/15.jpg)
Control and Structure
©Bob Larrivee Consultancy 2018
• Largest orgs much more likely to have
enterprise-wide (25%).
• 36% of smallest (and 10% of largest!) have
none, or just have plans.
• Source: AIIM Industry Watch
![Page 16: So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge (48%). • Reducing storage via defensible deletion (35%) . Source: AIIM Industry](https://reader034.fdocuments.net/reader034/viewer/2022050212/5f5ea8e4bbbf6e0f0a260f42/html5/thumbnails/16.jpg)
Setting Things Straight
©Bob Larrivee Consultancy 2018
• Retention and access are basics, 78%.
• Data Protection 65%.
• Mobile access and on-device 47%
• BYOD and cloud-based 39%.
• Source: AIIM Industry Watch
![Page 17: So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge (48%). • Reducing storage via defensible deletion (35%) . Source: AIIM Industry](https://reader034.fdocuments.net/reader034/viewer/2022050212/5f5ea8e4bbbf6e0f0a260f42/html5/thumbnails/17.jpg)
Organizational Challenges
©Bob Larrivee Consultancy 2018
• Enforcing policy once created is biggest issue
(41%).
• Then getting the right people interested and
involved (39%), particularly senior
management.
Source: AIIM Industry Watch
![Page 18: So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge (48%). • Reducing storage via defensible deletion (35%) . Source: AIIM Industry](https://reader034.fdocuments.net/reader034/viewer/2022050212/5f5ea8e4bbbf6e0f0a260f42/html5/thumbnails/18.jpg)
Help Is Needed
©Bob Larrivee Consultancy 2018
• More than 40% need help most with
convincing senior management.
• Then taxonomy, and content assessment.
• 31% need help to find or train info. pros.
Source: AIIM Industry Watch
![Page 19: So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge (48%). • Reducing storage via defensible deletion (35%) . Source: AIIM Industry](https://reader034.fdocuments.net/reader034/viewer/2022050212/5f5ea8e4bbbf6e0f0a260f42/html5/thumbnails/19.jpg)
What Should You Do?
©Bob Larrivee Consultancy 2018
![Page 20: So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge (48%). • Reducing storage via defensible deletion (35%) . Source: AIIM Industry](https://reader034.fdocuments.net/reader034/viewer/2022050212/5f5ea8e4bbbf6e0f0a260f42/html5/thumbnails/20.jpg)
Eliminate ROT
©Bob Larrivee Consultancy 2018
• It is ROT!
• Redundant
• Out-dated
• Trivial
• On average, 51% of Electronically Stored
Information has no value.
• Source: AIIM Industry Watch
![Page 21: So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge (48%). • Reducing storage via defensible deletion (35%) . Source: AIIM Industry](https://reader034.fdocuments.net/reader034/viewer/2022050212/5f5ea8e4bbbf6e0f0a260f42/html5/thumbnails/21.jpg)
Develop A Reduction Strategy
©Bob Larrivee Consultancy 2018
• Look to replace file shares with ECM/ERM.
• Clean that data
• Consider a cloud model and outsourcing.
• Automate Governance.
![Page 22: So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge (48%). • Reducing storage via defensible deletion (35%) . Source: AIIM Industry](https://reader034.fdocuments.net/reader034/viewer/2022050212/5f5ea8e4bbbf6e0f0a260f42/html5/thumbnails/22.jpg)
Automate Governance
©Bob Larrivee Consultancy 2018
![Page 23: So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge (48%). • Reducing storage via defensible deletion (35%) . Source: AIIM Industry](https://reader034.fdocuments.net/reader034/viewer/2022050212/5f5ea8e4bbbf6e0f0a260f42/html5/thumbnails/23.jpg)
Auto-classification
©Bob Larrivee Consultancy 2018
![Page 24: So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge (48%). • Reducing storage via defensible deletion (35%) . Source: AIIM Industry](https://reader034.fdocuments.net/reader034/viewer/2022050212/5f5ea8e4bbbf6e0f0a260f42/html5/thumbnails/24.jpg)
Content and Metadata Correction/Enhancement
©Bob Larrivee Consultancy 2018
• 22% are re-capturing and using OCR on
archives to add value.
• 3% looking to convert for analytics.
Source: AIIM Industry Watch
![Page 25: So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge (48%). • Reducing storage via defensible deletion (35%) . Source: AIIM Industry](https://reader034.fdocuments.net/reader034/viewer/2022050212/5f5ea8e4bbbf6e0f0a260f42/html5/thumbnails/25.jpg)
Man vs. Machine
©Bob Larrivee Consultancy 2018
• 34% feel automation is more consistent
than humans, 20% feel it’s more accurate
too.
• 48% prefer machine prompt with human
review.
Source: AIIM Industry Watch
![Page 26: So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge (48%). • Reducing storage via defensible deletion (35%) . Source: AIIM Industry](https://reader034.fdocuments.net/reader034/viewer/2022050212/5f5ea8e4bbbf6e0f0a260f42/html5/thumbnails/26.jpg)
What You Can Gain
©Bob Larrivee Consultancy 2018
• Cost saving is typical main target.
• Business resilience.
• Easier cross-enterprise access and
adoption.
• Minimizing Risk/Non-Compliance
• Under control from capture at first touch-
point.
• Identification and Classification
• Security and Metadata applied
• Less volume during eDiscovery, Audits,
and Requests for Information.
• Greater consistency, and adherence to
business rules.
![Page 27: So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge (48%). • Reducing storage via defensible deletion (35%) . Source: AIIM Industry](https://reader034.fdocuments.net/reader034/viewer/2022050212/5f5ea8e4bbbf6e0f0a260f42/html5/thumbnails/27.jpg)
You’ve Taken The First Step
©Bob Larrivee Consultancy 2018
You are here! • Automated Capture • Physical Capture Technology • Records Retention • Information Governance Tools • Benefits of Backfile Conversion
![Page 28: So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge (48%). • Reducing storage via defensible deletion (35%) . Source: AIIM Industry](https://reader034.fdocuments.net/reader034/viewer/2022050212/5f5ea8e4bbbf6e0f0a260f42/html5/thumbnails/28.jpg)
Contact Me
©Bob Larrivee Consultancy 2018
Bob Larrivee
President/Founder
Bob Larrivee Consultancy
www.boblarriveeconsulting.com
Twitter: @BobLarrivee
![Page 29: So You Think GDPR Doesn’t - Graphic Imaging...2019/03/01 · • Creating searchable knowledge (48%). • Reducing storage via defensible deletion (35%) . Source: AIIM Industry](https://reader034.fdocuments.net/reader034/viewer/2022050212/5f5ea8e4bbbf6e0f0a260f42/html5/thumbnails/29.jpg)
©Bob Larrivee Consultancy 2018