Presentation Slides on GDPR – why it matters and how to make it easy

   Words by CRM Consultancy

   on 25/05/2018 13:00:00

Over the last few months we have presented on GDPR a few times to discuss the wider reason and principles involved in the new regulations; and this may be helpful to anyone looking for a summary of GDPR and further resources on the details.

The notes behind the presentation are below, and this forms a companion piece to our article for GDPR – what its really about.


CRM has focused on User Adoption and Business Alignment, however technology is rewriting the rules.

This brings new opportunities but also new responsibilities for conduct in the Data Economy – notably the introduction of GDPR.

We will illustrate why the ethos behind GDPR will sit at the heart of the new relationship we will have with the customer, and how to realise the opportunity in having a customer-centric approach to our business.

Why is GDPR here?

Don’t think of GDPR as simply a new regulation or awkward rules to follow – but as a change in the direction of travel to both prevent abuses, and to start putting customer data at the heart of what we do.

No security is perfect, and there will be both deliberate hacks and accidental data breaches

However how we manage these incidents, and the level of respect we show to our customers is key

This is the rationale behind GDPR replacing the Data Protection Act, and the steps taken to ensure that organisations are providing a stable and secure environment for their EU Customers and Employees.

Data Policy will then become the same as having an Accountancy Policy, Legal Policy – an inherent part of operating a business entity.

What do we do?

Many businesses will have superior data systems but still not be compliant as they don’t use these systems in a compliant way.

Think of a person as being the controller of their data that you subscribe to for the duration of the Services and Business that makes you a subscriber to them - until they or you opt out of that subscription.

You are been given a period of access to that person’s personal data and not an infinite license.

What does GDPR mean for us?

At the heart of GDPR is the need for organisations to understand where personal data is stored and apply appropriate controls to secure this information from unauthorized access or malicious activity.

There are a wealth of good articles online that summarise the core pillars of GDPR:

How does this intersect with CRM?

What is the highest risk of Data Breach?

It’s not hackers – it’s the holy grail of Email + Spreadsheet attachment.

Why? Because Email is easy to use, and everyone gets it – GDPR compliance should be the same.


Ensure the right baseline is in place so the technology platform is right.

You must be a responsible store of Personal Data.

This does *not* mean being Fort Knox as GDPR is not a standard for Cyper Security – but it does mean having done the legwork in having a map of your Data Audit, a reasonable level of security awareness, and a policy in place for Data Breaches.

Data Audit – models the data we hold.

Structured Data – Databases and other Line of Business Systems.

Unstructured Data – Documents and Emails

Secured Storage – only as compliant as your weakest link.

Internal Responsibility – knowing your internal scope

External Responsibility – using the right providers with well understood scopes.

These six steps will then help ensure you can prove your responsibility in aiming to meet the regulations.

Where the above points may pose problems in competency or time to a business, then engaging an external Application Consultant or GDPR Trainer may be useful.


Use that technology baseline effectively, and setup in a way that your teams and users can use effectively.

Store your data effectively in a way that you can respond to Customer Queries efficiently – this is typically using a CRM or Marketing Solution that can prove you are a trusted partner with your customer to hold their data.

Dynamics helps you do this for Structured Record-based data.

SharePoint helps you do this for Unstructured Documents, Images and Email Attachments.

Apps such as DocMan can bind bigger tools together into one solution for your teams to use for GDPR – alongside adding specific functionality to help handle Data Access Requests, and sharing Personal Data with the Data Subject via a Portal or Online interaction.

As discussed, GDPR Compliance comes from your Team rather than a System, however good Tools can mean the difference between your Team *naturally* working in a complaint fashion vs having being forced to expand extra time and effort and so making adoption much more difficult.


Understand GDPR and the requirements behind the core principles.


Right to Access + Right to be Forgotten + Data Portability

Breach Notification

Tech Support will keep the lights on, but is effectively Business as Usual. (a true partner is the difference between a book-keeper and an accountant.)

The Partner will help you manage your responsibility and outsource some of the burdens to ensure you have the right security and right tools.

Share this Article

Search Articles

Filter Articles

CRM Tech DocMan

Recent Articles

Dynamics 365 Marketing vs ClickDimensions It’s time to pause, reflect and acknowledge a new era of inclusivity and collaboration. Part 2 - How to get the most from a Technology Expert – Asset Management Hub Property & Asset Management Hub Part 1 – Balancing CRM and Asset Management Scopes - Asset Management Hub Creating a Multi-Lingual PowerApps Portal How to Set Up a Microsoft Teams Site Using DocDrive365 Microsoft Teams - Adding a Microsoft Teams URL to a Dynamics Appointment Dynamics 365 Marketing – Customer Voice Survey Not Appearing In Emails? Using SQL Management Studio to connect to the Dynamics DB Calling a Power Platform AI Builder Model via oData How to use DocDrive365 to integrate permissions between Business Units in Dynamics with Sites in SharePoint Getting started with the Power Platform AI Builder. Power Apps Portal Information Hub DocDrive365 Security: Day One - Getting Started with Dynamics to SharePoint Permissions Part 5 - Power Apps Portals: How To Connect Azure B2C With Linked-In Part 4 – Power Apps Portals: Styling Azure B2C for Power Apps Portals The 3 Phases for Using Multi-Select Option Sets in Flow with Microsoft Forms Part 3 – PowerApps Portals: Azure B2C and Power Apps Portals – User Flow for Signup and Signin Part 2 - Power Apps Portals: New Application Registration in Azure B2C for our Power Apps Portal Part 1 – Power Apps Portals: Creating a New Azure AD B2C Tenant The Automation Bot: Launching Contextual Flow from Teams Creating a New Bot for Teams Debugging your Teams Bot using Ngrok Adding a Microsoft Teams URL to a Dynamics Appointment
Contact Us

Want expert advice or a demo?

Get in touch now and see how we can help your business grow.

  • Name
  • Email Address
  • Phone Number

Understanding Your Challenges

Our strong understanding of CRM and emerging technologies within the Microsoft environment means we deliver the right solutions for you.

Proven Real-World Solutions

As a leader in the field of Dynamics solutions, our pedigree developing and delivering real-world solutions is unsurpassed.

Long Term Support

We provide support beyond our design, implementation and 'go-live' delivery using Sprints and continual updates to our AppSource apps.

CRMCS | Design by Thinktank Marketing | Citrus-Lime Limited

To improve your experience today and in the future, this site uses cookies. Read our full Privacy Policy & Cookie information here I Understand