la gestione dei contenuti e la nuova normativa europea ... · giorgio anselmi, ibm client technical...
TRANSCRIPT
![Page 1: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/1.jpg)
GiorgioAnselmi,IBMClientTechnicalManager- CloudContentServices
GiuliaCaliari,IBM- ITSecurityArchitect
Lagestionedeicontenutielanuovanormativaeuropeasulladataprivacy
GeneralDataProtectionRegulation(GDPR)
These presentations are intended to provide friendly and helpful advice only, not a definitive statement of law
Roma,22Giugno 2017
![Page 2: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/2.jpg)
Clientsareresponsibleforensuringtheirowncompliancewithvariouslawsandregulations,includingtheEuropeanUnionGeneralDataProtectionRegulation.
Clientsaresolelyresponsibilityforobtainingadviceofcompetentlegalcounselastotheidentificationandinterpretationofanyrelevantlawsandregulationsthatmayaffecttheclients’businessandanyactionstheclientsmayneedtotaketocomplywithsuchlawsandregulations.
Theproducts,services,andothercapabilitiesdescribedhereinarenotsuitableforallclientsituationsandmayhaverestrictedavailability.
IBMdoesnotprovidelegal,accountingorauditingadviceorrepresentorwarrantthatitsservicesorproductswillensurethatclientsareincompliancewithanylaworregulation.
NOTICE
![Page 3: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/3.jpg)
§ The General Data Protection Regulation (GDPR) was published on 4 May 2016, and will be immediately applicable after a 2 year transition period on 25 May 2018 to any organisation which operates in the EU market
§ Introduces cross-industry 72H breach reporting to regulators and without undue delay to individuals with associated risk of severe reputational harm
§ Non-compliance has the potential to lead to huge fines of up to €20m or 4% of total annual worldwide turnover, so now is the time to build on the foundations you already have to ensure you Protect, Govern and Know Your Data
TheGeneralDataProtectionRegulation(GDPR)Appliesfrom25May2018
![Page 4: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/4.jpg)
Alcuni esempi di dati personali
4
![Page 5: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/5.jpg)
EU citizen rights Art. 12 a 20 and others• Transparent information
• Rights to restriction of processing
• Right to object and automated individual decision-making (“No Profiling”)
Security of personal data Art.. 5, 24, da 32 a 34• ... appropriate security of the personal data, including
and against accidental loss, destruction or damage, using appropriate technical or organisational measures (‘integrity and confidentiality’)
• .. appropriate technical and organisational measures… to ensure a level of security appropriate to the risk ...
⎼ the pseudonymisation and encryption of personal data;
⎼ the ability to ensure the ongoing confidentiality, integrity, availability and resilience of processing systems and services;
⎼ the ability to restore the availability and access to personal data in a timely manner in the event of a physical or technical incident ..
• .. in particular of the risks..from accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to personal data transmitted, stored or otherwise processed
Data Protection By Design and By Default Art 25• «.. , the controller shall, both at the time of the determination of the
means for processing and at the time of the processing itself, ...
• A) for ensuring that, by default, only personal data which are necessary for each specific purpose of the processing are processed«.. personal data are not made accessible without the individual's intervention to an indefinite number of natural persons ..»
• such measures shall ensure that by default personal data are not made accessible without the individual's intervention to an indefinite number of natural persons
Accountability Art. 5, 24 and others• Data controller is responsible … and be
with… («accountability») • Controllers and Processors have the duty to prove the
compliance with the GDPR principles, and therefore the obligation to trace processing activities and lawfulness, the gathering of notice and consent, the activities to manage, the security measures implemented, the access, etc..
• Privacy Impact assessment (Art. 35)
GDPR: 5 main obligations categories
Assessment & Clean Up
Archiving
Legal
Curation Records & Retention
By Designand BY Default
Data Processingprinci
ples
Accountability Security andData
Breaches
Knowing your Personal Data
EU citizen rights
Lawfulness and Consent (Art 5-8) • Personal data are : , correctly and transparently... ;
gathered for purposes well-defined, evident and legitimate...; appropriate, relevant and limited to the need ...; stored for a period to guarantee the appropriate security;
• Lawfulness (Art 6) • Consent (Art. 7 e 8)
![Page 6: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/6.jpg)
GDPR Solution Framework – IBM Technology
6
Dynamic Policy Management:
Define what, why, how long
Data Infrastructure:Control use, align cost to value
Implementation Services:Distribute policies to data sources Data Management
Email Servers
User Devices & File
SharesECM & Collaboration
ArchivePlatform
Master Data
Cloud & Social
Databases &Data Warehouse
HadoopPlatform
P o l i c i e s R u l e s A u d i tP r o c e s s e s An a l y s e s
Security & Com
pliance Monitoring
Lawfulness and Consent
Designand Default
Rights of EU Data Subjects
Lawfulness and Consent
Accountability of Compliance
Security of Personal Data
![Page 7: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/7.jpg)
Assess Design Trasform Operate Conform
QuickWinAnalyticsfortheITdepartment
InformationAnalysis
Shorttermactions
InformationGovernance
••DiscoverStructuredandNonStructuredcitizensdatainyourITenvironment
••Discovercurrentroleandresponsibilities
StoredIQ
••IdentifythequickactionsthatallowtofosterGDPRcompliance
••Implementtheactions
••SupporttheGDPRoverallpoliciesbasedonknowledgeacquiredthroughthequickwinoutcome
InformationAnalyzer
StoredIQ
IBMOptim Suite
Informationgovernancecatalogue
Support to GDPR workstream (example)
360° viewofcitizen(e.g.righttoerase)
…..
•MDM•StoredIQ
Dataquality •MDM,• Infosphere QualityStage
Privacydocumentmanagement
•CaseManager
GDPRWork-stream IBMAnalyticsTechnologyPh
ase
Activ
ityIBM
supp
ortin
gtechno
logy
IBMGDPRapproach
GDPR – Approccio IBM Analytics
![Page 8: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/8.jpg)
4) ACTS: move, delete, archive, classify, masking….
An initial approach to data management for GDPR
4) ACTS: move, delete, archive, classify, masking….
2) Add additional insight into data sources through automated analysis
1) Understand and Analyze Data & Documents containing Personal Information
InfoSphereInformationServer(Analyzer)
MetadataRepository
NonStructuredData
Stored-IQ
StructuredData
InfoSphere Information Server(Information Governance Catalogue)
3) Define Policies and Rules required by GDPR to correctly manage Personal Information (what, why, how long)
LegacyApplications,Programs,Routines…
![Page 9: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/9.jpg)
Information AnalyzerGovern Data Wherever It Lives - Discovery on Structured Data
Analisi dei database basata sui contenuti
Content-based database analysis
Business Rules: compliance monitoring
Comprehensive quality control
• Data profiling
⎼ Domain, frequency and format analysis
⎼ Identification Keys⎼ Identification of table relations⎼ Data Classification (i.e. PII)
• Shared Metadata generation
• Automatic Documentation
• Led development of the control rules
• Definition of control thresholds
• Trend Management
• Output control from the command line
• Automatic documentation
PROFILING AUDITING
9
Role in the GDPR• Discovery & classification• Metadata generation and management
• Data quality
![Page 10: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/10.jpg)
Information Governance CatalogPolicies & Rules definition, Audit and Personal Data Catalogue
Defining the terms and rules Defining the IT asset
Collaborationbetween business &
technical teams
Category: CostsTerm: Tax ExpenseDescription: Tax to be paid on Gross IncomeStatus: CurrentData Steward: Roger WestRelated Term: Tax LiabilityRelated Asset: Income_tbl
Source: Income_tbl (Oracle Table)Derivation: SUM(TAXAMT) Data Rule: TAXEXP > $1ETL Job: TXExpBusiness Term: Tax Expense
CommonMetadata
RepositoryBusiness Glossary Metadata Workbench
Metadata = “Data About Data”
10
Role in the GDPR• Personal Data Catalogue• Data Ownership• Data classification
• Audit & Compliance • By design & by default
![Page 11: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/11.jpg)
Master Data Management: the golden source of citizen data
6
Provide a single source of truth for citizen data and linkage to operational systems
Point of access and control for stewardship and to support specific GDPR requirements (i.e. Citizen Data Updating, Movement, Deletion, Privacy Preference management…)
InfoSphere MDM
‘An Integrated Versionof the Truth’
INFORMATIONRobert
9146 E. Via Del SolNetown
Potter
CA / 45883345-66-6744April 4, 1975480-473-5620
First:Last:Address:City:State/Zip:TIN:Birth:Phone:
CLAIMSRobert Potter
355-76-9345
9146 E. Via Del SolNetown, CA 45883
Name:Address:
TIN:480-473-5620Phone:
MEMBERSHIPBob Potter(Null)
Name:SSN:
April 4, 1975Birth:
DATA WAREHOUSEBobby Potter9146 E. Via Del SolNetown, CA 45883
Name:Address:
480-473-5620Phone:
ELIGIBILITYR Potter345-66-6745
Name:SSN:
April 4, 1975Birth:
Self-ServiceInternet
Claims
CustomerSupport
11
Role in the GDPR• Single source of truth• Data quality
• Update, transfer, delete,…
![Page 12: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/12.jpg)
12
Identify Relevant & Sensitive DataFind what data must be retained, protected or removed
Optimize Test DataAutomate and optimize the application test processes that rely on data to enable continuous testing & DevOps
Dispose of Unnecessary DataRemove unnecessary data from
critical transactionalor analytics applications
Data
Retain Essential Data
Historical inactive data is safely retained while easily accessible for
reports and compliance
Protect Sensitive DataPrivate Data: Customer IDs,
credit cards and financial data are masked or redacted
InfoSphereOptim
InfoSphere Optim Solutionfor Data Privacy, Test Data Management and Archive
·
![Page 13: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/13.jpg)
GestioneProcessi:IBMCaseManager
Coordina egestisce i processi previsti dalGDPR,cherichiedano lasupervisioneumanaalfinedigarantirelaconformitàallepolicy,quali adesempio:
• Accessoai propri dati dapartedelCittadino• Diritto all’oblio• Trasferimento Dati
IBMCaseManagerforInvestigationssupporta:§ Processo decisionale informato – utilizzando dati disponibili sudiversesorgenti§ Indagini complete- workflowsedati strutturati enon§ Vistadettagliata a360gradi – del’intero caso§Misure investigativeavanzate§ Collaborazione ottimizzata etrasparente
![Page 14: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/14.jpg)
Come identificare i Dati Critici, quelli Sensibili o Regolati, presenti nei contenuti archiviati in azienda ?
§ Un esperto può trattare 120-200 documenti o ripulirecirca 40 cartelle al giorno
§ L’accuratezza “Umana” nella Categorizzazione è di circa il 60%
§ Lo sapevate che:100TB = 500.000.000 di Documentioppure = 1 Miliardo di eMail
§ In media i contenuti raddoppiano ogni 2–3 anni
![Page 15: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/15.jpg)
NTFileSystem(Agent-lessorAgent)
NFS
LotusNotes&Domino
OpenText Livelink /ContentServer
FAS&SnapLock
EmailXtender
CIFS
ContentArchiveSystem/HCAP
Linux/Unix
Celerra/Centerra
Database/DataWarehouse
Dove e come li posso trovare ?
15
![Page 16: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/16.jpg)
20% - 40% ROT* Data
Removal Potential(*ROT = Redundant Obsolete Trivial)
69%Information withoutduty and value = unnecessary data
Business value:Archive records for value
25%
Legal hold: Collect and retain
evidence
1%
Regulatory record keeping:Hold and dispose of data
5%
%’sbasedonCGOCSummit2012SurveyCGOC=Compliance,GovernanceandOversightCouncil
Dadoveiniziare? Unpo’dipulizia !
![Page 17: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/17.jpg)
Datacleanup businesscase– uncasoreale
![Page 18: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/18.jpg)
20% - 40% ROT* Data
Removal Potential(*ROT = Redundant Obsolete Trivial)
69%Information withoutduty and value = unnecessary data
Business value:Archive records for value
25%
Legal hold: Collect and retain
evidence
1%
Regulatory record keeping:Hold and dispose of data
5%
%’sbasedonCGOCSummit2012SurveyCGOC=Compliance,GovernanceandOversightCouncil
Epoicerchiamo quello che ciinteressa
![Page 19: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/19.jpg)
Rilevanti per l’azienda
Capire
Isolare i Non-BusinessData
Ridurre
Identificare
Agire•Move,Copy,•Protect•Dispose
Classificare i Records
• Metadata&ContentID• ContextualAnalysis• SemanticAnalysis• BayesianClassifier• BasedonRecordsTaxonomy
DataAssessment
Indicizzazione “In-place”percomprendere ilcontenuto laddove si trova:
DataVisualizationMapsContentMining
StoredIQ – Come Funziona
![Page 20: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/20.jpg)
StoredIQComeidentificaidati- gliInfoset
![Page 21: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/21.jpg)
Dat
a So
urce
s
EmailServersForensicImages/Tapes
SocialNetworks
Desktops/Mobile
ECMArchivePlatform
FileServers Cloud MediaSharePoint&
EnterpriseCollaboration
Dat
a Se
rver
s
Distributed, Scalable Indexing Layer
Application Server
Gateway Server
Appl
icat
ion
Laye
rAp
plic
atio
nG
atew
ay
StoredIQ - LaTecnologia
![Page 22: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/22.jpg)
………. Un caso reale
Obiettivo, verificare la capacità dello
strumento di:
• Lavorare nell’ambiente del cliente
• Indicizzare full text il contenuto dei
documenti ed i metadati al fine di:
• Identificare informazioni sensibili
(i.e. GDPR)
• Identificare i dati candidati alla
cancellazione
Pilot
![Page 23: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/23.jpg)
………….. PoC Environment
• Appliances StoredIQ configurate nell’infrastruttura VmVare
• Copia di dati significativi su di una share in rete
• ………… i data erano già stati “ripuliti” teoricamente “no ROT data”
• 1,15TB distributed in varie cartelle
Electrolux Production Env. Selective copy Windows server StoredIQ servers
![Page 24: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/24.jpg)
WorkBench – ………. PoC Data Map 1
![Page 25: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/25.jpg)
WorkBench – ……… PoC Data Map 2
![Page 26: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/26.jpg)
PoC use case: Clean Up
Clean Up
Filtri basati sulladata di ultima modifica e data di ultimo accesso.
![Page 27: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/27.jpg)
Overall Summary Table
Distribution by Category
Distribution by Last Modified Data
Clean Up
RISULTATO:34% del totale dei documenti non modificati negli ultimi 6 anni66% di questi non sono stati acceduti da Luglio 2011.
Significa che almeno il 23% dei documenti non sono più stati utilizzati e sono ottimi candidati per l’archiviazione su nastro o la cancellazione.
PoC use case: Clean Up
Example of Major Contributors
![Page 28: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/28.jpg)
Ricercare dati sensibili PCI (Payment Card Industry) eDiscovery
Filtri basati suregular expression per cercare codiciIBAN all’interno di documenti.
PoC use case: eDiscovery 1
![Page 29: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/29.jpg)
eDiscovery
Lista di documenticontenenticodici IBAN Tedeschi.
PoC use case: eDiscovery
StoredIQ presenta la lista dei documenti“incriminati”
![Page 30: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/30.jpg)
Applicando i filtri IBAN come “overlay” viene creata unaheatmap per capire le aree di maggior esposizione eDiscovery
Heatmap con le aree di maggioresposizione
PoC use case: eDiscovery
![Page 31: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/31.jpg)
Selezionando documenti a campione si puòverificarne la presenza eDiscovery
RISULTATOOpertura di un documentocon codiceIBAN.
PoC use case: eDiscovery
![Page 32: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/32.jpg)
PoC use case: eDiscovery 2
Ricercare informazioni personali come gli indirizzi. eDiscovery
Creato un filtroutilizzando il wizard StoredIQ per cercare nei fogli di calcolo parole com indirizzo e cliente
![Page 33: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/33.jpg)
PoC use case: eDiscovery 2
Anche qui è stata verificata l’effettiva presenza
eDiscovery
RISULTATOLe informazioniattese sonostate individuate.
![Page 34: La gestione dei contenuti e la nuova normativa europea ... · Giorgio Anselmi, IBM Client Technical Manager -Cloud Content Services Giulia Caliari, IBM -IT Security Architect La gestione](https://reader031.vdocuments.site/reader031/viewer/2022021720/5bc85a3c09d3f22b288d62ed/html5/thumbnails/34.jpg)