According to analysts, companies should incorporate the demands of a rapidly evolving privacy landscape into their business data strategy.
By 2023, 65% of the world's population will have their personal data protected by some kind of digital privacy regulation, such as the General Personal Data Protection Law (LGPD), which is coming into force in Brazil. This is the projection of the latest research by Gartner, Inc., the world leader in research and advice for companies, which indicates exponential growth compared to current data, since, in 2020, only 10% of the population is digitally protected by some type of rule or law.
“With more countries implementing privacy laws based on GDPR regulation (General Protection Data Regulation), it is a fact that the world is moving towards adopting the European line as the global standard for handling personal information”, says Nader Henein, Vice President of Research at Gartner. “Control bodies are instituting privacy regulations that seek parity with the GDPR. These regulations allow entire countries to be closer to achieving the suitability with the European Union, where your companies can benefit from a larger market and new 'trusted' status.”
According to Gartner, although some organizations are still focused on cost optimization due to global pandemic COVID-19, 3 it is critical that companies incorporate the new needs of a rapidly evolving privacy landscape into their business' data strategy as soon as possible. “Security and risk management (SEM) leaders Security and Risk Management, in English) need to help their companies adapt their personal data handling practices without exposing the business to loss through fines or reputational damage”.
Gartner analysts warn that Security and Risk Management leaders need to implement as many features as support the increased volume of data, as well as greater variety and speed for controls, implementing a complete privacy program that is capable of managing three stages in information management: Establishment, Maintenance and Evolution.
1) Establishment – According to analyst Henein, the first stage for implementing privacy programs in companies is Establishment, in which basic resources and technologies are mapped to conduct a data management program. This mapping is necessary for any customer-facing company that processes personal information. This includes discovery and enrichment that allow companies to establish and maintain records of privacy risks.
2) Maintenance – The next stage, Maintenance, in which organizations scale their privacy management programs. This step focuses on the ongoing administration and management of resources needed to perform the analyses. This includes improving response time to incidents that violate personal data, as well as bringing automation to privacy impact assessments.
3) Evolution – The Evolution stage includes specialized tools, seeking features that focus on reducing privacy risk with little or no impact on data usage. One of the most popular features allows organizations to extract insights on its large database consumers without exposing them to excessive privacy risks. This has been a critical feature for marketing teams.
EN 
PT 
