By GRC World Forums2021-07-07T14:00:00
The truth is many companies addressed their data retention obligations during the period of GDPR-readiness and have not circled back since.
Organisations need to continually think about how they manage their data and enforce their retention policies and schedules. Companies often keep personal data on their systems long after it’s needed, mostly because there isn’t a reliable system or processes in place to enforce those data retention initiatives.
We’ve also seen examples where a lack of a robust approach to data retention has contributed to sizeable fines:
Join our expert panel to consider these enforcement actions and explore how organisations can future proof their data retention obligations and ensure they continue to manage data appropriately in line with the GDPR.