As organizations across the globe work to comply with the General Data Protection Regulation (GDPR), leadership within these organizations understands that compliance can often lead to opportunity under the guise of implementing or revising best practices. Maintaining a data inventory to meet the obligations within Article 30 related to data-processing records is one such issue. While data mapping and inventories are not specifically called for within the language of the article, building an effective GDPR compliance program based on a comprehensive inventory helps to enable an organization’s ability to meet GDPR requirements and to provide a clear vision for ethical data handling that drives value.
