Understanding GDPR requirements Part 4: Data portability
Conclusion: A requirement of the European Union’s (EU) General Data Protection Regulation (GDPR) is the concept of “data portability”, which provides a right to receive personal data an individual has provided in a “structured, commonly used, machine-readable format”, and to transmit that data to another organisation.
Underlying data portability is an assumption that data standards exist and are widely used across all public and private sector organisations, especially in specific vertical industries, such as Financial Services, Health or Utilities. In many cases in Australia, no such standards exist and there is no framework to encourage industry cooperation.
Australian organisations needing to comply with GDPR will have to develop an approach and strategy to how they will provide data portability when requested to do so.
About The Advisor
Peter Hall was an IBRS advisor between 2016 and 2020 who covered enterprise infrastructure, management, managing vendor and customer relationships, vendor capabilities and vendor offerings. Peter is also experienced in Start-Up’s and Mergers and Acquisitions. Peter has over 37 years of experience working in the IT sector in ANZ and Asia Pacific, gaining invaluable insights into vendor offerings and strategies, relationship management, and channel strategies. Peter’s an experienced executive having worked for Hewlett-Packard, Blade Network Technologies (acquired by IBM in 2010), IBM and Lenovo. Peter is also an accredited Tony Buzan Licensed Instructor in Mind Mapping.