Which GDPR Requirement is the Most


       Challenging?








                  Right to be forgotten (RTBF)/right to erasure


                         Data protection by design and by default


                            Defining what "state of the art" means


                   Encryption and/or pseudonymization of data


                          Data breach notification within 72 hours


                                              Data minimization principle


              Defining data use cases and managing consent


                       To service a person's data access request


                  Data transfers to countries outside of the EU

                                                                 Data portability


                                 Appointing a data protection officer



                                                                                           0%       5%      10% 15% 20% 25% 30% 35% 40% 45% 50%
     IDC #EMEA42212817 (January 2017)
     Source: IDC's 2017 CIO Survey (n = 182)

       ©
       © 2018 Engage ESM All Rights Reserved 2018 Engage ESM All Rights Reserved