GDPR compliance is a particularly complex endeavor as, unlike other areas of compliance, it impacts at any level every segment of an organisation, including legal, marketing, sales, finance, ICT and others.

In turn, the outcomes of any compliance effort aimed at specific areas as marketing, finance, sales, production, information systems often have a repercussion on privacy.

These are the reasons why, more than ever, also from the technology standpoint, Risk Management and Compliance focusing on the privacy and data protection regulations require an integrated solution, as well.

Integration between the risk possibly coming from any organisation’s segment or any process.

Integration from a cultural standpoint, getting people used to think about compliance not as a series of compartments waterproof to each other.

Integration between the mutual relationships of different laws and regulations.

None of you will miss the connection between an ISO9001:2015-based quality management system and the GDPR, or this latter’s with an ISO37000 antibribery system or with cybersecurity or even with clinical risk management methodologies in the healthcare or financial reliability analyses by the banking system.

What is your experience?