Rollbar, a company that assists engineering teams in delivering high-quality software solutions, shared their story about becoming GDPR compliant.
By realizing that the new era has commenced, making data possession an asset and a liability at the same time, the company eagerly started adapting to the upcoming changes. Rollbar welcomed the new regulation, which emphasizes the importance of privacy and data control for every single of their users, with open hands.
GDPR not only changed the way data is perceived, but also introduced new methods of its processing.
Collecting, storing, and deleting data needed to be organized in a way that offers an individual full control, including the option of its permanent removal. The possibility of permanent data removal brought new challenges, such as the “Right to be forgotten”, which made the company consider introducing new techniques.
In order to welcome the new regulation prepared for a smooth transition, Rollbar set strict deadlines. They made GDPR compliance their utmost priority, optimizing their ongoing projects in accordance with the new regulation. What made the transition process even more complex is an extensive regulation which called for support from a legal counsel. The assistance of a legal counsel helped the company resolve important issues, such as defining their roles and responsibilities following the introduction of the new privacy regulation. The biggest challenge was to predict any conflict requirements – for instance, making sure that potential data deletion does not interfere with other processes.
By accepting and implementing the GDPR, Rollbar learned some important lessons that can be applied to other projects, as well. They actually used this process to develop other features and improve the needs of stakeholders. Also, dividing a complex problem into multiple stages turned out to be a highly successful way of its resolution. In addition, the company made the data control much more transparent and accessible for their users. For instance, Rollbar users are able to decide whether they want their data to be processed or anonymized, which, in return, helped the company avoid any operational costs for potential data erasure. Big and complex projects such as GDPR implementation cannot be successfully realized unless the company is open to synergistic functioning.
To ensure compliance with GDPR, Rollbar had to:
- Learn to perceive data in a new light;
- Set strict deadlines in order to be prepared for implementation;
- Seek legal advice;
- Develop new techniques and features, while reducing the costs, as well;
- Employ the strategy of resolving complex problems by dividing it into stages;
- Understand the importance of a strong and trustworthy team, which represents the foundation of a successful business.
If you are interested in reading the full story on how Rollbar has become GDRP compliant, you can find more on https://rollbar.com/blog/preparing-for-gdpr-privacy/