From all of us here at Druva, I am wishing you a happy GDPR Day! For many organizations May 25th, 2018, has been an impending inevitable data privacy doomsday of a sort. The amount of coverage around the GDPR has been tremendous, and EU 20,000,000 in fines is by no means a neglectable amount for any organization. In the meantime, there is still plenty of ambiguity around enforcement, interpretation, and application of the regulation to various technologies and business practices. To lighten the mood just a bit, I invite you to check out how the stars will align for you in your efforts to comply this year based on your Zodiac sign.
Lucky Articles 15-21: You are the “hold my beer and watch this” sign in the Zodiac, and will knockout those data subject requests in no time.
Unlucky Articles 33-36: Your impulsive nature may not enjoy having to perform DPIAs prior to changing the way you process data.
Lucky Articles 44-50: This is an old requirement, and your responsible self has already implemented EU-US Privacy Shield/SCCs/BCRs.
Unlucky Articles 20: Data portability is a whole new right. Too many changes!
Lucky Articles 12-15: You love transparency and sharing how people can exercise their rights under GDPR.
Unlucky GDPR Article 22: Your indecisive self may rely on automated individual decision making, which is now under strict scrutiny.
Lucky Articles 7-9: You care about people around you, especially children. Hence, you are all for extra precautions for children’s data collection.
Unlucky Articles 37-39: Unless you are the DPO, your inner “Zodiac mom knows best” may not get along with your Data Protection Officer.
Lucky Articles 37-39: You’re about working smart, not hard. Let the DPO do the heavy lifting!
Unlucky Articles 16-19: Rectification and Erasure rights responses require too much work!
Lucky Articles 37-39: This will be great for you because your Data Protection can stand in the spotlight – so you won’t be.
Unlucky Articles 32-34: Data breaches draw way too much attention, which can be painful for your shy nature.
Lucky Articles 26-29:Cooperation is your strength, so sharing data with controllers and processors is not burdensome to you.
Unlucky Articles 9-11: You are against restricting processing criminal records if the data subject is willing to provide the information.
Lucky Articles 9-11,17: You love your secrets. You prefer not to disclose any more than necessary. So naturally, you understand why data subjects want to keep their information private as well.
Unlucky Articles 12-13: Having to disclose all your processing practices in great detail is cringe-worthy at best.
Lucky Articles 85-87: You will do best with these Articles because they give you the most discretion. Who doesn’t enjoy some freedom of expression?
Unlucky GDPR Articles 44-50: You’ve already struggled with this one, am I right? Your spontaneity is restricted by having to abide by data transfer mechanisms.
Lucky Articles 32-34: Because you expect the worst, you prepare for the worst. Your security practices are on point because you know that data breaches happen, and you are fully prepared.
Unlucky Articles 77-84: As a perfectionist, you cannot stand to be criticized. So not only being criticized, but also being penalized with a €20M fine, is an insult that cuts to the core of your essence.
Lucky Articles 35-36: Data Protection Impact Assessments are perfect for you because they give you answers.
Unlucky Article 23: It very much frustrates you when the supervisory authority can step in and tell you that you’re restricted from processing the data for whatever reason.
Lucky Articles 12-15: You genuinely do care that the data subjects are informed of what data you are collecting and what you are doing with it.
Unlucky Article 24: You may oversee all things related to data, but you also have a tendency to get lost in your own world. To keep all of the controller reqs in check, don’t forget to keep records!