A leading global hospitality company is required to build an inventory of personal data to evaluate privacy risk exposure and enforce enterprise-wide privacy rules. We helped to develop a GDPR Data Map to show information flows within the company and implemented data governance processes and establish roles and definitions
- Customer (Data Subject) can reach out to the DPO team and request his/her personal information in the company system
- Customer (Data Subject) can request erasure /anonymization of his/her personal information in the company system
- Personal data can only be accessed by those with proper rights, based on the nature of the personal data, the rights associated with users’ groups, and the usage context
Fill the form to read and download the full case study