GDPR Compliance: The Critical Role of Data Management | GBAF

GDPR Compliance: The Critical Role of Data Management | GBAF

Editorial & Advertiser disclosure

Global Banking and Finance Review is an online platform offering news, analysis, and opinion on the latest trends, developments, and innovations in the banking and finance industry worldwide. The platform covers a diverse range of topics, including banking, insurance, investment, wealth management, fintech, and regulatory issues. The website publishes news, press releases, opinion and advertorials on various financial organizations, products and services which are commissioned from various Companies, Organizations, PR agencies, Bloggers etc. These commissioned articles are commercial in nature. This is not to be considered as financial advice and should be considered only for information purposes. It does not reflect the views or opinion of our website and is not to be considered an endorsement or a recommendation. We cannot guarantee the accuracy or applicability of any information provided with respect to your individual or personal circumstances. Please seek Professional advice from a qualified professional before making any financial decisions. We link to various third-party websites, affiliate sales networks, and to our advertising partners websites. When you view or click on certain links available on our articles, our partners may compensate us for displaying the content to you or make a purchase or fill a form. This will not incur any additional charges to you. To make things simpler for you to identity or distinguish advertised or sponsored articles or links, you may consider all articles or links hosted on our site as a commercial article placement. We will not be responsible for any loss you may suffer as a result of any omission or inaccuracy on the website.

Home > Top Stories > EDM Council Report Finds Data Management Key to GDPR Compliance

EDM Council Report Finds Data Management Key to GDPR Compliance

Published by Gbaf News

Posted on May 18, 2018

5 min read

Last updated: January 21, 2026

Swedish central bank cutting interest rates - Global Banking & Finance Review — Image depicting the Swedish central bank's decision to cut interest rates to 2.50% as the economy stabilizes, highlighting cautious monetary policy for 2025.

EDM Council has published a comprehensive report identifying the critical role data management must serve for firms to comply with the General Data Protection Regulation (GDPR), which goes into effect on May 25, 2018. GDPR states that all businesses, regardless of where they are located, must protect the personal data and privacy of people in the EU.

The EDM Council report, “General Data Protection Regulation (GDPR): The Role of Data Management,” was developed with 40 expert practitioners from 24 member firms, including 14 global systemically important banks (G-SIBS) and regional banks. The report points out that, because the privacy function is executed across the enterprise wherever personal data is managed, compliance to GDPR is only achievable where a comprehensive data management framework is in place. The group concluded that using the EDM Council’s DCAM™ (Data Management Capability Assessment Model) provides the structure and critical capabilities for supporting the data and data management requirements of GDPR compliance.

“Through the efforts of our GDPR Working Group, we are pleased to publish “General Data Protection (GDPR): The Role of Data Management”, describing the data management best practices needed to help organizations from all industry comply with GDPR,” said John Bottega, Executive Director of the EDM Council. “This is an important example of how the EDM Council continues to collaborate with industry experts in order to bring value to its members and to all industries impacted by GDPR.”

The EDM Council report is timely, given the impending GDPR deadline of May 25 and risks of non-compliance being as high as the larger of 4% of annual global revenue or €20 Million. Despite these factors, many firms remain unprepared. According to an April 2018 survey by Cordium, more than half of investment firms will not be ready. However, the financial industry may be somewhat more prepared than other industries due to its history of dealing with financial services regulation.

The EDM Council report, along with two supporting documents, “GDPR Requirements Analysis Quick Reference Guide” and the “GDPR Work Group Analysis Worksheet” are available online at www.edmcouncil.org.

ABOUT EDM COUNCIL

The EDM Council is a 501(c)(6) non-profit trade association founded to elevate the practice of data management as a business and operational priority. The Council is a leading advocate for the development and implementation of data content standards and the publication of data management best practices. More than 200 firms and 7,000 professionals are members of EDM Council. For more information, visit www.edmcouncil.org.

EDM Council has published a comprehensive report identifying the critical role data management must serve for firms to comply with the General Data Protection Regulation (GDPR), which goes into effect on May 25, 2018. GDPR states that all businesses, regardless of where they are located, must protect the personal data and privacy of people in the EU.

The EDM Council report, “General Data Protection Regulation (GDPR): The Role of Data Management,” was developed with 40 expert practitioners from 24 member firms, including 14 global systemically important banks (G-SIBS) and regional banks. The report points out that, because the privacy function is executed across the enterprise wherever personal data is managed, compliance to GDPR is only achievable where a comprehensive data management framework is in place. The group concluded that using the EDM Council’s DCAM™ (Data Management Capability Assessment Model) provides the structure and critical capabilities for supporting the data and data management requirements of GDPR compliance.

“Through the efforts of our GDPR Working Group, we are pleased to publish “General Data Protection (GDPR): The Role of Data Management”, describing the data management best practices needed to help organizations from all industry comply with GDPR,” said John Bottega, Executive Director of the EDM Council. “This is an important example of how the EDM Council continues to collaborate with industry experts in order to bring value to its members and to all industries impacted by GDPR.”

The EDM Council report is timely, given the impending GDPR deadline of May 25 and risks of non-compliance being as high as the larger of 4% of annual global revenue or €20 Million. Despite these factors, many firms remain unprepared. According to an April 2018 survey by Cordium, more than half of investment firms will not be ready. However, the financial industry may be somewhat more prepared than other industries due to its history of dealing with financial services regulation.

The EDM Council report, along with two supporting documents, “GDPR Requirements Analysis Quick Reference Guide” and the “GDPR Work Group Analysis Worksheet” are available online at www.edmcouncil.org.

ABOUT EDM COUNCIL

The EDM Council is a 501(c)(6) non-profit trade association founded to elevate the practice of data management as a business and operational priority. The Council is a leading advocate for the development and implementation of data content standards and the publication of data management best practices. More than 200 firms and 7,000 professionals are members of EDM Council. For more information, visit www.edmcouncil.org.