With Data Protection regulations setting "storage limitation" principles (i.e. only keep personal data for as long as you 'need' it), firms have been dealing with the challenge of legacy systems, unstructured data stores and paper records. My question is, are you on the journey of managing the retention and deletion of personal data and if so where are you on that journey?

Data Governance Big Data

Indefinite retention / keep everything is our strategy13%

We haven't yet started, but plans and discussions are underway54%

We have set our retention standards, but not yet embedded them21%

Actively embedding deletion processes to address the backlog of over retained data9%

Data is deleted as part of an embedded BAU process to agreed retention periods3%

103 PARTICIPANTS

1.4k views

Content you might like

Which method do you prefer for data storage?

Tape drives16%

SSD61%

NAS21%

Other (please comment below)

View Results

My ESG team uses a dedicated application to consolidate indicators for external reporting. This system manages a workflow where a designated owner submits data and a validator approves it. However, the process is heavily manual and lacks system integration. With upcoming regulations like CVM 193 in Brazil, the pressure for accurate, auditable, and timely ESG data is intensifying, and our current tool is being questioned. Question: What strategies or platforms have you implemented to automate the extraction of ESG data from various source systems (EHS, HR, ERP, etc.) into a centralized reporting tool?

Do you manage AI and traditional IT infrastructure investments as separate portfolios (budgets, governance, decision criteria), or do you combine them? What are the benefits and drawbacks?

Read More Comments

New privacy laws continue to pass by state/by country. For companies operating in multiple states and/or internationally, is data localization adding additional costs to your privacy program?

Yes, increased headcount19%

Yes, increased vendor/tool costs56%

Yes, both increased headcount and vendor/tool costs19%

No, no change4%

View Results

I work for a company with geographically dispersed operations, and we are facing significant challenges with our data collection and reporting processes for HSE (Health, Safety, and Environment). We collect a variety of environmental data (e.g., water quality indexes, equipment training compliance) from multiple sites. Our current data collection application has critical governance gaps. When an indicator shows a deviation, we struggle to trace its origin because the system lacks a clear audit trail. We cannot confidently verify who entered the data or when, which undermines the reliability of our HSE indicators. Furthermore, our data collection forms are rigid. Any request to add or modify fields requires our development team, leading to significant delays and hindering our ability to adapt to new requirements quickly. Questions: 1. How do you ensure robust data governance for HSE indicators? What tools or best practices have you found effective? 2. Have you successfully empowered your business or HSE teams to create and modify data collection forms without developer dependency? If so, what low-code/no-code platforms or solutions do you recommend?