top of page

INSIGHTS

GDPR: A Strategic Data Springboard

Who can have missed the hysteria regarding GDPR and the potential penalties that follow a breach of the regulations?... Today most initiatives are focused on achieving a defendable position - knowing where all sensitive data is, its make-up, its usage, its secureness and the way it’s captured and managed. This can be achieved: top-down, by going through all processes and procedures that touch the data; or bottom-up, finding and analysing data in all the organisation’s systems and media and collecting that knowledge in one repository. Only both approaches combined create a true reflection of the reality.


United Vanning offers both, and more. Once established these capabilities can also create new data strategy and governance processes to underpin the company’s strategic business initiatives. Become compliant and achieve strategic enterprise data capability!


United Vanning believes GDPR must not become a one-off, reactive activity. The opportunity is captured to drive strategic data capability planning across the entire enterprise. The platform tools ensure that initiatives are aligned with the physical reality of data across the entire enterprise through sensitive data scanning and data quality assessment of all data sources, structured and unstructured, providing the company with its first defendable GDPR assessment and data support to its strategy


Strategic Data Capability Planning And Governance using Software AG’s ARIS


  • Project preparation, goals and dates, GDPR roles and responsibilities, requirement catalogue, organisational scoping, IT scoping

  • Data protection design and deployment

  • Readiness surveys. Over 3,000 GDPR assessment survey questions capturing the organisation’s touchpoints and current management of personally identifiable information

  • Application questionnaires, risk assessments, mitigation planning

  • IT security assessments, risk mitigation, planning and execution

  • Compliance risk assessments, mitigation with planning and execution

  • Create and implement data policies by capturing required regulatory information

  • Reinforce the right data policies in your organization for better compliance

  • Status quo report

  • Change management

  • Plan and execute internal audits

  • Incident handling procedures



Strategic Enterprise Data Layer Implementation with Software AG’s webMethods OneData Suite


More and more companies are realising that data and accessibility to data drive innovation in customer experience and business processes. However, new Data Warehouses (DWs) or Data Lakes are simply not enough. Building an Enterprise Data Layer that services data consumers, both operationally and analytically is imperative. This is even more important in a microservices architecture. Services are meaningless without access to data. This requires technology and implementation for:


  • Master Data Management with data governance and workflows

  • Ongoing data matching & cleansing using advanced data scoring algorithms

  • Survivorship and golden record creation, reconciling data from multiple sources

  • Data federation and integration capabilities for any required pattern

  • Prebuilt connectors for data validation against external services



Sensitive Data Discovery, Quality Management & Traceability using AnalytiX DS Unified Platform for building an information asset register giving perfect understanding of your data, from business data domain to physical storage using AnalytiX DS


The Data Discovery layer allows you to catalogue all data sources and manage the business definitions of data. It automatically identifies the underlying sensitive data across the organization that it needs to protect. Understand what the sensitive data means, where it comes from, where it moves (data in motion) and who has access to it.  Generate dynamic data lineage views for complete traceability. Trust that the data and the processes comply with the regulation. Centrally govern PII and SPI and avoid hefty fines for data breaches and non-compliance.


Business Glossary, Data Policies & Rules Manager

  • Maintain a glossary of terms and definitions and link terms to technical metadata to view underlying data lineage

  • Enable transparency across the enterprise

  • Generate traceability/lineage views for your data policies and Business Rules



Metadata & Data Dictionary Management - cataloging your physical data stores

  • Universal platform for scanning, consolidating and governing all the organizational technical metadata

  • Collaborative platform to maintain and enrich the data dictionaries

  • Establish the origin of source data and traversal of data across the enterprise

  • Built in metadata scanners for automatically scanning metadata from any data source

End-to-End Lineage and Impact Analysis (truly unique capabilities)

  • Trace your data flow across various systems and get access to all the information required to make swift business decisions

  • Visualize the flow of data and effectively assess impact analysis of potential changes to data definitions, rules, policies and attributes

  • View lineage from Business glossaries and drill into physical data catalogues and data mappings to view comprehensive lineage 



Sensitive Data Discovery - configure detection rules, scan, detect and manage PII and SPI (truly unique capabilities)

  • Monitor & Control Sensitive data across the organization and provide better visibility and control across the enterprise to identify data security threats and reduce the associated risks

  • Enriching Business Data Elements for sensitive data discovery - provide a comprehensive mechanism to define business data elements for PII, PHI and PCI across your organizational database systems, cloud and big data stores to easily identify sensitive data based on a set of algorithms and data patterns

  • Metadata and Value-based analyses - Enable the discovery and classification of sensitive data based on metadata and data value patterns and algorithms. Organizations can define business data elements and rules to identify and locate sensitive data including PII, PHI, PCI and other sensitive information

  • Connect and Discover Sensitive Data - Quickly analyze and discover sensitive data across relational databases, Big Data & No SQL repositories and cloud data stores by seamlessly establishing a connection to the target repository and efficiently performing a metadata level and value level analysis to identify the location of sensitive data and report the statistics.

  • Robust and Efficient Scanning Mechanisms - Use highly robust and performance efficient scanning mechanisms to process millions to billions of records to discover sensitive data and report the results in a quick and efficient manner.



Track Data in Motion with Metadata Driven Automation (enabled via CATfX automation)

  • Pre-built connectors for all major ETL tools such as Talend, Microsoft SSIS, Informatica, IBM DataStage, Pentaho, SAP Data Services, Oracle Data Integrator and others are available.

  • Pre-built procedural code scanners will connect to SQL Stored procedures, Java programs, Visual basic programs, Python, shell scripts and COBOL programs and auto-document code as mappings

  • Once scanners scan, document the code – mappings are created in a business user friendly format and data lineage views are created from them to detect data at rest and show where PII and SPI is being federated inside and outside the organization and where it lands on the reporting layers and reporting files and SharePoint drives.

Score Cards, Reporting and Dashboards

  • Profile your data using attribute analysis and value analysis assessment engines

  • Enable the organization to assess, improve, and closely manage its internal data

  • Comply with regulatory compliance such as GDPR, Sarbanes-Oxley, HIPAA, Basel I and Basel II

  • Demonstrate compliance through standardized Data Quality scorecards and dashboards that monitor the status of your compliance activities.

  • Ensure the data is fit for their intended uses in operations, decision making and planning

  • Allows organizations to quickly remediate the invalid values based on Business Rules and generate data repair “fix-scripts”

  • Report on GDPR compliance activities to demonstrate sustainable compliance to regulatory authorities and support risk management on an ongoing basis



How is all this established, what is needed and how is it implemented? 

It is our experience that there is a gap between understanding the principles and benefits and implementing in a cost efficient manner. United Vanning has extensive hands-on experience. We provide the technology knowhow as well as the process insight to assist from idea through to implementation. In our engagements we give our customers access to our partner ecosystem for world leading technology.


United Vanning is an expert consultancy providing:


  • Program and project management

  • Business, process, data analysis and data discovery

  • Master data management and metadata management

  • Architecture and data modelling: conceptual, logical and physical

  • Compliance assessment

  • Data quality assessment management

  • System implementation and integration

  • Test Management and test execution

For more information about United Vanning or to explore how our expertise can help you, please email the GDPR Team or visit our website at www.unitedvanning.com



bottom of page