However, controlling data storage and sovereignty is far easier in an on-premise environment than a cloud environment.
Whilst a data owner has complete control of information stored in an on-premise environment, they have limited control over this data when it resides in a cloud provided by a third party. As a result, having a close relationship with a trusted cloud provider will be crucial, as under the regulation, any data breaches must be reported within 72 hours.
To prepare for the GDPR, CIOs need to modernize their approach to data management today – this will include gaining full visibility into their entire IT infrastructure, to understand which cloud services are in use and where data is being stored.
Ultimately, data is the currency of today’s digital economy, and organizations must ensure customers, users and partners can have full confidence their data is properly used and adequately protected. Ensuring compliance with GDPR is the perfect opportunity to provide that peace of mind.