Latest News

PwC on GDPR: Tech is the missing link

PwC’s legal team has released a new paper on preparations for the GDPR, finding that technology is often the missing link.

PwC’s legal team has released a new paper on preparations for the GDPR, finding that technology is often the missing link. The paper covers the technology reasons behind why data protection law exists; transitioning to GDPR & the tech it requires; and what organisations should be doing now.

The principal contention of the White Paper is that data controllers and processors who are engaged in the design, build and delivery of GDPR programmes should re-examine and rebalance their priorities, in order to deliver the best possible technology environment for personal data before the GDPR comes into force in May 2018.

As part of this rebalancing exercise, they should:

  • Critically examine whether they have enough time, space and resources in their programmes to deliver what is required in their technology stacks by May 2018. As part of this process they should consider performing a technology functionality gap analysis, whereby the operational performance of technology is tested against the requirements of (1) the data protection principles, (2) the data subject rights and (3) the programme build requirements described in the GDPR.
  • Perform a risk and cost-benefit analysis, whereby the operational risks to personal data and the legal and reputational risks to the controller or processor of data protection failure are weighed against the feasibility issues associated with delivering technology change, such as the lead time required to source, procure, install and test new technology. Central to this exercise is an understanding of the nature of the technology market and the consensus of professional opinion on what ‘good’ looks like.

Want to know more? You can download the paper here:

Or call PwC cybersecurity partner Stewart Room (pictured) on 07711 588978.

One reply on “PwC on GDPR: Tech is the missing link”

Here at we are keen to help people get ready for GDPR. We see GDPR as a huge opportunity rather than a threat and are looking for partners that can promote our data migration platform. ICO states that data collected pre-GDPR is not compliant, Optindigo is designed to help people convert their mobile, social, email data bases to GDPR compliant format including new opt-ins and privacy statements.

We have been involved in marketing for many years and believe that this will be enormously valuable to a wide range of companies once they realise they have no valid marketing data.

We are looking for partners to share in the potential revenue.

If this is of interest please let me know.

Comments are closed.