A data lake is an infrastructure that permits different data sets from within a group to be combined and analysed together.
To analyse a data lake under GDPR, it is helpful to think of a data lake in two phases, which we analyse in our user guide.
The infrastructure phase
Here, the guide covers:
- Identify the entity that is hosting the data lake.
- Implement an intragroup data processing agreement.
- Check data localisation rules.
- Data protection impact assessment.
- Data lake governance committee.
The applications phase
Specifically, we look at:
- Data lake service provider becomes data controller.
- Instructions from each affiliate as (original) data controller.
- Mapping value transfers from data lake applications.
- Data lakes and applicable law.
- Anonymisation.
- Additional purposes that are “compatible”.
- Data protection impact assessments.
Discover more about ‘Getting to data nirvana’
Our series of guides help you integrate your legal, regulatory and compliance work streams into your organisation’s overall data strategy.
They review:
- The best way of understanding data value and ownership.
- How the GDPR can be used to create data value.
- How to bust regulatory silos to optmize risk management.
Next steps
Take advantage of the far-reaching changes brought about by the GDPR with our European Privacy Tool, which offers realistic, practical and workable insights as well as templates, helping to ensure that you are successful in meeting the applicable regulatory requirements.
For more news and analysis that is tailored to you, as well as access to Hogan Lovells’ cutting-edge interactive Lawtech tools, register for free on Engage.
You can also keep track of all the Engage content by following our LinkedIn page.