451 Research Analyst Report Says Integris Addresses the ‘Missing Link’: Automated Remediation and Control of Sensitive Data Once It Is Identified

As data privacy and data protection regulations around the world continue to proliferate – each with its own nuances and requirements – many enterprises are now struggling to identify data down to the data element level and create cohesive human processes to manage data and control workflow. Given escalating volumes of structured and unstructured data, the need for automation is a given.

No single software product can make an organization compliant with GDPR, CCPA or similar regulations, so the enterprise typically employs several solutions. However, there is often a gap in tooling when multiple products are in place: the step of automatically enacting appropriate policy on sensitive or personal data once it has been identified. This is the layer of control that Integris helps customers to implement, and it’s a critical one for continuous, defensible compliance. Integris makes extensive use of automation and machine learning, for both detection of sensitive data and assignment/execution of policy, which are necessary given escalating volumes of enterprise data that cannot be manually evaluated and assigned protective policies.

In a new report published in March 2019, the analyst firm 451 Research outlines how Integris Software helps companies achieve their comprehensive data control objectives through automation. We are pleased to make the full report, Integris Software leverages automation for continuous data privacy compliance, available for complimentary reading. Here are a few highlights from the report:

  • Integris Software is designed to help automatically detect sensitive and personal data, and importantly, automate remediation and policy execution once that data has been identified. The company calls its approach “data privacy automation”, and these capabilities ensure that data is automatically protected with appropriate measures once it has been identified.
  • At a high level, the Integris platform provides a data privacy hub for multiple stakeholders including CIOs, CTOs, CDOs, CISOs and CPOs, as well as various lower-level practitioners.
  • Tools for visibility into where sensitive data resides, and the ability to automate policy actions on that data, help ensure that data isn’t just discovered and documented, but that an appropriate control workflow is kicked off as well.
  • Integris’ capabilities can be leveraged as a data logic layer, so organizations can add and control any type of rule to any type of data, for any use case, not just regulatory mandates. Privacy is simply the ‘tip of the spear.’

Read more about what 451 Research has to say about Integris Software’s approach to data privacy automation here.

Data Privacy Management Benchmarks – How Do You Stack Up?

Have you ever wondered how your data privacy management program compares to your peers? Brand-new research from Integris Software reveals the data privacy management budgets, organizational dynamics and technical readiness of 257 mid- to large-sized U.S. enterprises. Close analysis of these survey results provides insight into surprising results and emerging trends. If your privacy team seems under-resourced, it may be that you’re behind the curve, and these findings could provide support for growing your privacy program.

Watch leading voices in data privacy as they dive into the benchmark data and provide their unique perspectives on the findings.

Do you conduct interstate business in the US? Prepare now for CCPA.

The California Consumer Privacy Act was passed in June 2018 and goes into effect in January 2020. Although it’s ostensibly a state law, CCPA is trying to forge a de facto standard for data privacy in the US in the absence of federal legislation. CCPA is similar to GDPR in that it uses economic presence to urge other regions – US states – to adopt similarly high standards. But GDPR and CCPA do have their own requirements and nuances, and a compliance program specifically architected to address GDPR will not necessarily translate. Businesses with interstate operations will need to take a more holistic and less regulation-specific approach to data management and compliance to remain competitively viable.

The analyst firm 451 Research published the report The California Consumer Privacy Act: not just ‘America’s GDPR’ in March 2019. Integris Software is pleased to offer complimentary access to the report to help companies understand and prepare for the requirements of CCPA. Here are a few highlights of the report:

  • Data privacy and data protection around the world has reached a tipping point. The EU’s GDPR, in effect since May 2018, has been a model for other countries concerned about consumer privacy protections. Moreover, individuals are becoming more aware and more educated regarding the value and sensitivity of their data. 
  • How companies handle individuals’ personal data affects consumer trust and confidence in those companies. A recent 451 Research survey shows that 26% of US consumers are less trusting of US businesses than they were one year ago. Significantly, 90% of the survey respondents expressed concern about the ability of the companies they do business with to adequately protect their personal data. 
  • Most large businesses in the US have California residents as customers, thus pressing the adoption of CCPA’s standards elsewhere in the nation. Other states are in the process of developing their own privacy laws. What could result, in the absence of a federal standard, is disparate privacy requirements in the US, with each state having different protections for its residents. 
  • GDPR and CCPA have much in common in their core principles, but they also differ significantly in the details. It’s key for organizations is to tackle core, shared requirements at the architectural data management level and address individual nuances of each regulation with tools higher in the stack only as necessary. Such an approach allows for flexibility amid evolving regulations, and ultimately, cost savings. 
  • Data privacy and data protection regulations are largely more process-oriented than they are technology-oriented. Investment in platforms that help coordinate processes across various data protection and data privacy stakeholders can especially benefit the business, even when these platforms do not exert direct control on data themselves.

Learn how GDPR and CCPA are similar as well as how they differ. Read the full 451 Research report here.

Feel like data privacy and protection requirements are a chore? Turn them into a business advantage.

Most organizations view data privacy and data protection regulation such as GDPR and CCPA as a costly and time-consuming burden. However, the core data management capability required for compliance – granular data control – is also necessary for proactive leveraging of data for business purposes. Companies should view data control and architectural optimization as a strategic opportunity to uncover hidden insight and benefit their data-driven business initiatives.

The analyst firm 451 Research published the report Architectural data control: turning privacy requirements into a blessing, not a curse in January 2019. Integris Software is excited to make the report available help companies see the dual-sided benefits they can derive from holistic data control. Here are a few highlights of the report:

Both regulatory compliance and effective leverage of data share the common requirement of granular data control. Today’s data privacy and data protection requirements, then, should be viewed by the enterprise as an opportunity to optimize data management architecture from the ground up.

  • Organizations cannot protect or provide privacy controls for data if they cannot quickly and consistently locate data, identify and resolve duplicates, accurately associate personal information with identities, and enforce policies. Both structured and unstructured data must be controlled with the same rigor.
  • With strong data control capabilities, the effects of silos are minimized, resulting in the ability to aggregate and analyze diverse data sources in a more contextual way. Data privacy and data protection mandates effectively shift the balance of power back from data quantity to data quality.
  • When consumers or data subjects are given more choices over the use of their data, trust is fostered. When a trusting relationship is built, consumers voluntarily provide more accurate information over time. Consumer trust, in turn, is correlated with more profitable lifetime relationships, lower churn, and more positive word-of-mouth presence in the market.

In summary, data control is the common requirement for both reactive compliance and proactive data leverage capabilities. It is also essential to building trust with consumers that drive long-term profitability. If the enterprise is to strategically fulfill compliance requirements while maintaining the ability to competitively maximize the insight it derives from data, it must optimize its data management architecture and strive toward a unified view of data.

Learn more about the myriad benefits of architectural data control in this complimentary 451 Research report here.