Information Governance: Working towards a more transparent tomorrow

Three years on from the introduction of GDPR, Iron Mountain’s Gavin Siggers explores what the future holds for Information Governance in a post-pandemic world
Three years on from the introduction of GDPR, Iron Mountain’s Gavin Siggers explores what the future holds for Information Governance in a post-pandemic world.

The past three years have been nothing short of momentous for data handlers. Firstly, the EU’s General Data Protection Regulation (GDPR) subjected Information Governance (IG) practices to new levels of scrutiny. Meanwhile, the data landscape has continued to grow in scale and complexity, creating myriad new challenges to address. And then, the COVID-19 pandemic hit, thrusting employees into virtual workplaces, upsetting IG norms and procedures, and increasing the risk of non-compliance and cyberattack. The pandemic has not only challenged how organisations manage their information, but has also changed its nature, with many companies now conducting health screenings and feeding into virus tracking systems, on top of core business data.

Driven by these independent but interrelated factors, discussions on privacy compliance have never been more heated. And the pressure is on data managers to rapidly evolve and adapt their practices to fit the new, post-pandemic reality. To answer the question of where we go from here, and how organisations can ensure their IG policies are futureproofed – whatever new hurdles come next – we need to return to the fundamental principle of GDPR: data transparency. A notion that appears to have been somewhat lost over the past few years – despite the business benefits to be gained from placing it front and centre.

Responsible data practices as a competitive advantage

For too long there’s been an assumption that an organisation’s business interests and the privacy of its customers are mutually exclusive. In practice, however, responsible data practices can actually help drive growth by creating trusted relationships. At a time when concerns over data privacy are greater than ever, the ability for companies to demonstrate that they genuinely care about people’s privacy is a crucial selling point.

With this in mind, an ethical and successful IG program should embed the notion of transparency throughout every system and process, and across the entire workforce. Beyond compliance obligations, this means being fully transparent with the people whose data you hold. Best practice is to regularly publish details on your data policies and any changes, and to do this in a way that puts the customers’ interests first. Indeed, with privacy so high up the public agenda, the question is: why don’t organisations shout as loudly about their IG practices as they do about their sustainability performance?

Transparency breeds trust and innovation

It is easy to view GDPR and regulations like it as simple compliance hurdles. Boxes that need to be ticked before getting on with the ‘real’ business of running an organisation. This, however, ignores the positive and lasting impact data privacy legislation has had in modernising their IG strategies.

Many of the foundational principles of good IG support organisations in dealing with their data, legacy or otherwise.  When it came into force, GDPR forced companies across the continent to take stock of the information they held, interrogate why and how they use it, and fully understand its lifecycle. As a result, enterprise data could no longer be out of sight and out of mind.

This more proactive approach to IG has in turn demonstrated the increasing value of data digitisation. Meanwhile, new tools – such as AI and Machine Learning – are helping companies better understand their data, how to look after it and how to make better use of it. For example, an NHS Trust in the UK wanted to find a way of digitising almost 200,000 patient records while optimising clinical and administrative efficiency while investing in providing a future capability for its patients to access their records online. The digital tools available in an electronic document management system (EDMS) helped the Trust collect and index files, return images and ultimately transform its Electronic Patient Record system.

Four steps towards a modern and ethical IG programme

It can be daunting, particularly as the volume and complexity of the data organisations hold continues to swell, but in essence, the key to future-proof IG boils down to the following four imperatives:

  1. Analyse and Address Your Risks: The first step is to understand where your organisation currently sits in terms of IG maturity, and then map out a path for the future. This begins by proactively pinpointing and addressing any data handling risks or blind spots in your procedures and policies. To help, there are a number of useful products designed to measure an enterprise’s maturity state against benchmarks, as well as progress over time.
  1. Know Your Data: The next step is to make a plan for your information assets. This should include understanding the value and risks associated with different information types and aligning the lifecycle accordingly will improve the applicability of automation, supported by machine learning. This reduces the burden of integration and data management, eliminates human error and bias, and can also help cut costs and uncover new revenue streams.
  1. Embed transparency into every system and process: It’s critical that businesses operate in a spirit of transparency at all times. This means regularly publishing information on data protection and privacy performance and any changes in how data is being used.  Even when the news is bad. Importantly, these practices also need to be embraced across the organisation.
  1. Keep Going: Finally, you need to recognise that this is a process of continuous improvement, ongoing investment and oversight. To maintain focus and engagement, it’s important to map out and apply and measure appropriate controls as well as to celebrate key milestones.

Organisations can achieve tangible business benefits beyond compliance, driving trusted relationships, trusted data-driven decisions and opening doors for new paths of innovation by applying transparency principles to their data assets.

READ MORE:

Understanding your organisation’s current position in terms of IG maturity is the first step in ensuring your IG framework is fit for the future. Iron Mountain can help you start on the right path by supporting you to understand your baseline, allowing you to start conversations with key stakeholders and begin to reimagine your IG processes, embedding principles of transparency throughout.

For more news from Top Business Tech, don’t forget to subscribe to our daily bulletin!

Follow us on LinkedIn and Twitter

Amber Donovan-Stevens

Amber is a Content Editor at Top Business Tech

How E-commerce Marketers Can Win Black Friday

Sue Azari • 11th November 2024

As new global eCommerce players expand their influence across both European and US markets, traditional brands are navigating a rapidly shifting landscape. These fast-growing Asian platforms have gained traction by offering ultra-low prices, rapid product turnarounds, heavy investment in paid user acquisition, and leveraging viral social media trends to create demand almost in real-time. This...

Why microgrids are big news

Craig Tropea • 31st October 2024

As the world continues its march towards a greener future, businesses, communities, and individuals alike are all increasingly turning towards renewable energy sources to power their operations. What is most interesting, though, is how many of them are taking the pro-active position of researching, selecting, and implementing their preferred solutions without the assistance of traditional...

Is automation the silver bullet for customer retention?

Carter Busse • 22nd October 2024

CX innovation has accelerated rapidly since 2020, as business and consumer expectations evolved dramatically during the Covid-19 pandemic. Now, finding the best way to engage and respond to customers has become a top business priority and a key business challenge. Not only do customers expect the highest standard, but companies are prioritising superb CX to...

Automated Testing Tools and Their Impact on Software Quality

Natalia Yanchii • 09th October 2024

Test automation refers to using specialized software tools and frameworks to automate the execution of test cases, thereby reducing the time and effort required for manual testing. This approach ensures that automation tests run quickly and consistently, allowing development teams to identify and resolve defects more effectively. Test automation provides greater accuracy by eliminating human...

Custom Software Development

Natalia Yanchii • 04th October 2024

There is a wide performance gap between industry-leading companies and other market players. What helps these top businesses outperform their competitors? McKinsey & Company researchers are confident that these are digital technologies and custom software solutions. Nearly 70% of the top performers develop their proprietary products to differentiate themselves from competitors and drive growth. As...

The Impact of Test Automation on Software Quality

Natalia Yanchii • 04th October 2024

Software systems have become highly complex now, with multiple interconnected components, diverse user interfaces, and business logic. To ensure quality, QA engineers thoroughly test these systems through either automated or manual testing. At Testlum, we met many software development teams who were pressured to deliver new features and updates at a faster pace. The manual...