When we started blogging about a year ago, we really didn’t know what to expect in terms of involvement from our readers. We are more than happy to see that recipients have shown an interest in our stories that has exceeded our expectations by far. We in turn benefit from the fact that sharing our thoughts with our readers allows us to remain alert and stay focused. To kick-off 2018, we would therefore like to share our main expectations and organizational developments with you.
Core activities and developments
Currently, we have five employees working in the field of data integrity and computer system validation (CSV). Another two colleagues are completely dedicated to lab automation. With the GDPR regulation about to knock on our doors, we have put together a team that includes a lawyer and a Data Protection Officer (DPO) to help you prepare for May 25 next. This has resulted in a GDPR Quick Scan, among other things. Behind the scenes, a range of developments have our full attention. These include (but are not limited to):
• New partnerships with both Dutch and foreign software and consultancy companies
• Software solutions with regard to data quality and data management (simplifying/enhancing audit trail reviews among other things).
• Co-creation of entirely new (science-driven) software solutions
• Initiating pilot projects in the Pistoia Alliance Community of Interest 'Lab of the Future', regarding, for instance, Internet of (lab) Things
• The use of blockchain technology to further safeguard the protection of data
In the months to come, the GDPR will dominate agendas all over the world. While many consultancies tend to stir up feelings of fear or even panic among organizations, we at Vivenics prefer to take a more realistic, risk-based approach. Regardless of the fact that the EU lacks the capacity to review all organizations at once, we are quite certain that taking the first modest yet serious steps towards full compliance will do. This is also based on our extensive experience with government audits. Starting with a GDPR Quick Scan will immediately reveal existing risks and gaps. Rather than trying to fix every single detail overnight, we are quite certain that drafting a remediation program, showing the measures to be taken (and how high-risk gaps can be tackled in the short term) will be enough. At least for now.
Actually quite like data integrity audits where so-called ‘majors’ or fines are rarely issued bluntly. The months after ‘G-day’ will be exciting in the sense that we will all be anxious to find out when the first sanctions start trickling in.