How to apply GDPR to the Servicenow Instance and few Implementation ideas
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎01-17-2018 05:16 AM
Hi All,
Could anyone of you please help us with some ideas on applying GDPR to the Servicenow Instance along with few suggestions that can be followed to be compliant..
Thanks & Regards,
Raji.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎01-19-2018 07:28 AM
Hi Rajalakshmi,
You'll want to focus on the EU users (if you have more than 5000) in your instance, and their related records.
So creating a new "In GDPR Scope" checkbox field on the sys_user table would allows you to find all related record very easily.
If you already use the Country or the Location field of the user table, then, you could even populate the "In GDPR Scope" field automatically via script and business rules.
Creating a GRDP Dashboard or list view, showing the number of GDPR users would allow for easier reporting for your GDPR compliance officer.
You should also give him this link: GDPR Compliance Corporate Statement | ServiceNow
If your GDPR compliance officer want to use ServiceNow to manage the GDRP requirements for your whole company, including everything not related to ServiceNow, then you'll need to purchase the GRC Policy and Compliance Management solution.
Policy and Compliance Management centralizes the following activities:
Establish controls and controls owners
Define control tests and expected results
Establish test and control frequencies
Identify risks: impact and likelihood
Prepare attestations
Map authoritative sources to policies, procedures, controls, and risks
If that the case you should start here:
ServiceNow White Paper GDPR: https://www.servicenow.com/content/dam/servicenow/documents/whitepapers/wp-preparing-for-the-gdpr.pd...
