Vice President, Deputy General CounselSan Francisco-based emerging growth software company
GDPR compliance is an incredibly difficult compliance project to achieve and an equally difficult one to kick off. Charged with this compliance project for my company, I felt daunted and also unsure of where to start, so I turned to Data MetaMorph.
Data MetaMorph provided the analytical foundation that enabled my team to kick off our GDPR compliance project by quickly identifying, quantifying and providing analysis for all of the devices, both internal and external, that we store data on, including the legacy places we no longer actively store data. In my opinion, this is one of the most considerable GDPR risk factors.
Not only did DataMetaMorph bring to this task the objectivity and rigour that you would expect from seasoned industry heads with broad data management and compliance backgrounds, but they have also developed an engagement approach and software for analysing data that enabled them to identify over twice the number of devices and applications that we were initially aware of.
Data MetaMorph’s approach was very thorough, requiring substantial stake-holder engagement, but was also efficient and remarkably undisruptive from an operations perspective. Post completion of the project, we not only had a clearer idea of the risks and issues that attend GDPR compliance directly, but also other issues that revealed inefficiency and broader data related risks.