Five Pillars for GDPR Compliance

with Talend

1
©2017 Talend
Welcome
A few logistical points.
• All participants are muted

• You may ask questions using the Q&A panel located on

bottom or GoToWebinar applet

• Answers will be provided after the presentation

• If time is too short to address all questions, answers will be provided via email

• To receive a replay of our webinar today, please send us an

email to webinar@talend.com

• If you are experiencing connection problems, please use the

Q&A panel to communicate

2
 Five Pillars for GDPR Compliance
with Talend

3
©2017 Talend
Today’s Presentation

Jean-Michel Franco
Darren Brunt
Product Marketing
Pre-Sales Manager
Director

4
GDPR (General Data Protection Regulation) in a nutshell
• Protects privacy for individuals
• Goes into effect in 2018 (May).
• Increase powers of authorities to take action against non compliant business.

Tough penalties: Worldwide

Fines up to 4% of annual global revenue Regulation also applies to non EU companies that process
or €20 million (whichever is greater) personal data of individuals in the EU.

Broad definition: Cross Border Data transfer :

Personal data includes identifiers such as The international transfer of data will continue to be governed
digital/online, genetic, mental, cultural, biometric under EU GDPR rules.

Affirmative Consent: obtaining consent for Data subjects : they have the right to be forgotten and
processing personal data must be clear, context erased from records. Users may request a copy of personal
based and must seek an affirmative response. data in a portable format.

5
Global Data Privacy is Multi-Dimensional
• Multiple subject areas
• Customer, Employee, Prospect, Citizen,
Vendor…

• Emerging data types

• Internet of Things, Logs, Biometrics…

• Multiple jurisdictions
• EU, Canada, Australia, U.S….

• Rapidly changing regulations

• GDPR, CASL, HIPAA…

6
Why now? A wake up call for practical actions

4%
of global
0.004%
of global
50%
won’t meet
revenue revenue deadline

Potential cost of for Budget devoted The pressure

non compliance to data protection is on IT

Source: European Commission, TeachPrivacy, Gartner 7

GDPR – Helicopter Positioning
What’s Involved
• Identify, know and track your PII data
√
• Make sure your PII data is
?
compliant
• Protect your PII data
and foster
accountability
• Make your PII data
available for the data
subjects

8
What does it mean for your Data Management practices ?

Goal DM Practice

Inventory your PII Metadata Mgmt.

GDPR Data hub, MDM,

Track and Trace
Metadata Mgmt.
Data anonymization &
Protect your data
pseudonymization

Establish policies Data Governance

Foster Collaborative Data

accountability Stewardship
Data Integration, Data
Open your Data
Services

9
Five pillars for GDPR governance with Talend
Know your personal data

Data
classification
Respect the right & lineage
Data access
of the data subject & portability
Collect, reconcile and take control
Data
capture &
integration
Self-service
curation &
certification
Data
Foster accountability protection
for data protection
Anonymize and pseudonymize

10
GDPR demo

11
©2017 Talend
GDPR Demo
Personalizing Customer Online Experience in a compliant way
Business Goals (LOB)
• Increase Winter sales by $3M
through personalization
campaign
• Needs to be done in 2 weeks
ACME
Risk Concerns (DPO) IT Concerns (IT)
• Need a Customer 360° view
• Need for a GDPR Privacy
Impact Assessment (Art 35) • Propagate opt-ins across
customer apps
• Consider opt-in consent (Art 7)
• Time to market (normally 8
• Deliver proof of consent (Art 7)
weeks)
and data portability (Art 20)
12
How to achieve compliance?

1. Find the opt-in data

2. Integrate into the Customer CRM Mobile
360° view Marketing
App
3. Propagate across customer
facing systems
MDM
4. Deliver proof of consent and Customer Portal
data portability
Data Lake

13
 Demo Part 1: Getting the IT system ready for GDPR

Where can I How can I share

find the opt-ins across all
opt-in data ? customer facing systems ?

Metadata Talend
IT architect
Manager MDM

Know where your data is and deliver it across systems 14

Demo Part 2: Reclaiming the Opt-in Data

Self-Service Data
Data Preparation Stewardship

MDM Platform

MDM Platform

Combine people and processes for end-to-end governance 15

Demo Part 3: Answering a customer claim

How can I get the audit trail of

customer opt-ins

Data Protection Officer MDM Data Platform

Audit trail down to the finest grain 16

GDPR Demo ACME
Personalizing Customer Online Experience in a compliant way

Business Benefits DPO Benefits IT benefits

• Faster time to market • Compliance • Lower Costs

• Increased revenue • Trust • Faster Design
• Customer Intimacy • Governance • Reclaim shadow IT

17
Practical steps to GDPR complaince

26
©2016 Talend
Draw the Roadmap for GDPR Compliance
Further along
2%

Doing data
mappings
18%
Not started
48%
Conducting risk
assessment
32%

Survey: How Far Along Are You with GDPR?

27
Free self-assessment survey With

http://talend.gdprevaluation.com/

Connecter Fill-up a 20’ questionnaire Get your readiness assessment

28
A 16 Step Data Governance Plan for GDPR Compliance

Talend white paper

29
Air France-KLM aims delight customers with “Over 80% of lost items
“The issue of security is addressed with Talend Data Quality since we process
some of our clients’ personal data and this data needs to be protected.
personalized experience,
In addition,Air France KLM Manager can determine ten times faster than
creates a complete 360°
before
Talend
view
where
Metadata
theofdata
returned”
theis located, when it is coming from, and where it is going.”
customer.
Damien Trinité, CRM Big Data Project Manager, Air France KLM

30
Your next steps in your GDPR journey
• Get our White Paper
• Self-assess your readiness: http://talend.gdprevaluation.com/
• Populate your data inventory
• Set accountabilities and orchestrate collaborative data governance
• Modernize your platforms and practices for data management

31
 Five Pillars for GDPR Compliance
with Talend

32
©2017 Talend