In today’s era of regulations, the role of archive and long-term retention data is changing dramatically. No longer can data simply be shipped off to a “cheap and deep” repository with the hope that it will never need to be accessed again. With the EU’s General Data Protection Regulation (GDPR), and the California Consumer Privacy Act (CCPA), as well as the large and growing number of other regulations, it is now necessary to organize and govern archive and long-term retention data differently. The method or solution must facilitate required access, ensure compliance, and ensure that data is not being used in a way that it is not supposed to be.
New regulations require greater degrees of data transparency and quality. The enterprise needs to provide insight into what data is being stored, how that data is being stored, and who has had access to that data on a global basis. Businesses are required to enforce data privacy – that is to say that data protection actions such as deleting personal, sensitive information can be taken if needed. Lastly, but certainly not least importantly, the enterprise must be prepared to respond to data breaches across various silos of infrastructure.
The problem is that IT is simply inundated with the sheer volume of data that their organization is creating and storing. That data exists across a variety of storage infrastructures that are typically siloed. Meanwhile, historically there is a lack of process around data governance, and approaches are typically highly reactive instead of proactive. Ownership is also highly fragmented. Put simply, understanding what data is available, how valuable that data is and how likely it is to be breached, and having a plan to react to compliance requirements and data breaches is extremely challenging.
To meet these requirements, IT requires a long-term data archive solution that is readily available, and that is searchable and granular for discovery. IT also requires value-add data services that enable more intelligent, value-based data governance. Such a platform should be able to identify and provide context into data based on file contents. This is where data governance can add value back to the organization – in no small way through helping to resolve eDiscovery and compliance requests as quickly as possible, and through providing additional data control, visibility and quality.
For additional discussion on how to construct a modern and intelligent data governance strategy, access Storage Switzerland’s on demand webinar with and Hitachi Vantara, “Designing Storage Architectures for Data Privacy, Compliance and Governance.”