Perhaps this would interest only EU hackers .. but I think it’s going to be extremely interesting as a “system design/theory” problem.
There is the GDPR regulation going to kick off in May 2018. Simply put it regulates how an organization has to handle personal data. And that is a huge deal.
The task is: Make the organization GDPR compliant.
Does anyone has a suggestion how to approach such a task from the most general “system design/theory” perspective?
GDPR interests US hackers too. I'm currently working on a SAAS that helps companies manage their data privacy, with GDPR being the main driver. I can't say much about our approach just yet as we're in stealth mode still, but imho the approach should be centered around awareness of what, where, and how data is stored. That's the very first step.
There is the GDPR regulation going to kick off in May 2018. Simply put it regulates how an organization has to handle personal data. And that is a huge deal.
The task is: Make the organization GDPR compliant.
Does anyone has a suggestion how to approach such a task from the most general “system design/theory” perspective?