A DPL Fault Tree Analysis of GDPR Risk

GDPR DPL Decision Model

Unless you’ve been living under a rock, I’m confident that you’ve heard about the European Union’s new General Data Protection Regulations (GDPR) that go into effect on May 25, 2018. Over the last month you’ve likely been barraged by dozens of “Privacy Policy Update” emails as companies scurry to come into compliance with these expansive new regulations.

In response, Syncopation Software has published a timely, two-part software video series in which the risk of a GDPR violation is graphically broken down, with direct references to the regulation text, in the form of a DPL Fault Tree. In the first part we provide an overview of the GDPR fault tree and results which provide the likelihood of a company violating the new regulations. In the second part a DPL Decision model incorporating the GDPR Fault Tree as an embedded module is leveraged to ascertain the least costly GDPR compliance strategy given the uncertainties surrounding the regulation’s interpretation, regulator’s enforcement posture, and the costs associated with compliance and violations. Embedded below is the first video of the series, there is a link to play the second part at the end of the first:

If you’d like to download the DPL Fault Tree workspace used in the video use the following button: