By Dennis Slattery, CEO at EDMworks
Three seemingly unconnected pieces of legislation will fundamentally change the data management landscape over the next three years. They all have different causes, but their combined effect will be to enforce accountability for data, reinforce governance, underpin data architecture and mandate data quality management:
The General Data Protection Regulation (GDPR) changes the rules and accountabilities for security around personal data and transforms penalties for data breaches from “cost of doing business” to “bankrupting the business”
The Network and Information Security Directive (NISD) focuses on identification, registration and accountability for critical networks or systems. The scope covers financial, telecoms, utilities and other types of business. It is the European Union’s response to cyber terrorism.
On 7th March 2016, the Senior Manager and Certification Regime (SMCR) was implemented as a self-regulating framework for senior management accountabilities across the finance sector. This provides the legislative structure for the PRA/FCA to demand individual accountability for and oversight of critical business functions. The NISD and GDPR will use this framework to ensure personal accountability for data assets across the organisation.
EDMworks Practitioner Network on 2nd June 2016
The EDMworks Data Practitioner Network (DPN) event on June 2nd addresses these issues and provides a collection of industry experts to explain the combined legislation, the potential impacts and discuss how organisations plan to address these challenges.
As with all DPN sessions, the purpose is to explore multiple perspectives on the subject to provide you with greater breadth and depth in order to help you develop your own specific strategies.
If you would like to find out more or register for the event please click the following link:
