By GRC World Forums2022-10-11T12:33:00
Data Retention and disposal requirements have been long oversimplified or underestimated and put aside by controllers to focus on other priorities of their Data Protection programs.
The infamous line “we will keep your data for as long as it is needed” is frequently found in privacy notices in websites. Records of Processing Activities (ROPAs) have been often created in a rush and are not as complete as they could be.
It is time for controllers to review their ROPAs and to bring consideration to retention. Even better, to systematise and automate the way they manage data disposal. There are plenty of collateral benefits to doing this: new or reviewed ROPAs, improved readiness to DSAR and better intelligence and damage control when Data Breaches occur.
Join this webinar to learn about:
● The risks of failing to operationalise data retention programs
● Existing and emerging data retention obligations in the context of GDPR
● Creating a more collaborative, software-driven process for security and privacy teams to work effectively together.