{"id":3585,"date":"2017-12-01T11:58:48","date_gmt":"2017-12-01T11:58:48","guid":{"rendered":"https:\/\/uaetechnician.ae\/?p=3585"},"modified":"2018-06-14T03:19:32","modified_gmt":"2018-06-14T03:19:32","slug":"ibm-prepares-gdpr","status":"publish","type":"post","link":"https:\/\/uaetechnician.ae\/ibm-prepares-gdpr","title":{"rendered":"How IBM Prepares for GDPR"},"content":{"rendered":"
IBM, a global IT company, is one of the world’s largest information processors. It is therefore imperative that we fully comply with the European Privacy Act (GDPR), which will take effect soon. To this end, we provide customers with a variety of information protection, security, and management services.<\/p>\n
This preparation program is divided into a series of workflows to cover various areas of IBM. For example, IBM offers services to its subsidiaries such as The Weather Company, IBM’s way of processing information for customers using IBM products, and common services used internally as well as by external customers. Of the information security.<\/p>\n
“As IBM prepares, the preparatory program is evolving,” said Richard Gordon, a global GDPR evangelist at IBM. “The recently added workflow is about auditing, and we will see that compliance is maintained. This is done in different workflows and verified and verified across the enterprise.”<\/p>\n
IBM continues to document the process of developing GDPR-related procedures. Therefore, we will be able to clearly communicate the measures taken internally for regulatory compliance to regulators.<\/p>\n
The GDPR requires each company to know the type and location of information held in detail. “Once the GDPR comes into force, we need to know exactly what personal and sensitive information is, because there may be additional information protection obligations on that information,” Ho said.<\/p>\n
IBM has developed a ‘pathways framework’ to identify and classify this information. The company’s Chief Information Officer and Chief Information Security Officer take the lead and designate a key liaison for each division and are responsible for compliance. They identify the exact scope and schedule of what they need to do based on their workflow and differential analysis assessments.<\/p>\n
“The first step is to implement information protection risk assessment and advanced mapping,” Ho said.<\/p>\n
IBM’s key business units and services are evaluated where they are on the path to GDPR compliance goals. IBM then develops programs that fill the gap in each workflow and establishes the necessary technology and organizational measures.<\/p>\n
This process involves a detailed search of the source of priority information. Some of the personal information is listed in the central list. To enable the company to manage records of information processing activities and to respond to requests from regulatory authorities or information authorities.<\/p>\n
High-risk information, such as those obtained through IBM’s Watson Health, is an area of particular focus.<\/p>\n
IBM, operating in more than 170 countries, must meet a number of overlapping regulations around the world. To ensure that employees understand their personal obligations as well as compliance requirements, the company conducts regular training and offers programs specifically designed to prepare for GDP.<\/p>\n
“Information protection and information ethics are a fundamental part of IBM. They are included in the annual ethics training for all employees,” he added, adding “intensive and simple GDPR on top of that.”<\/p>\n
GDPR emphasizes privacy-by-design, which is included throughout the company. These principles were already the foundation of management at IBM. However, to meet the specific requirements of the GDPR, IBM has redesigned its practices.<\/p>\n
“We have done a thorough assessment of the impact of information protection on our products and services,” he said. “We will look closely at how each product handles exactly what personal information it handles.”<\/p>\n