Intelligent CIO Europe Issue 05 | Page 38

EDITOR’S QUESTION There is no endpoint to GDPR. Organisations need to support a set of requirements to comply in time but also be able to evolve and be agile as the requirements change. Tactically, there will be adjustments to the GDPR requirements going forward as it beds in and as elements are clarified and tested. This could cover everything from what constitutes personal information or sensitive information through to the exact scope of the various rights applying to individuals and their own data. There is a huge amount of value in the GDPR and to get the most out of it businesses must see it as an opportunity, rather than another tick-box compliance exercise. “ THE ULTIMATE OBJECTIVE OF THE GDPR IS TO ENABLE MORE DIGITAL ACTIVITY, NOT LIMIT IT. www.intelligentcio.com