The General Data Protection Regulation, GDPR, has been designed to give back control of personal data to the individual while defining a clear set of rules on data protection for European Citizens.

It is not just European based companies that need to take note. All organisations that process personal data of EU citizens must also comply with the regulation.

Many companies will find it difficult to meet the new rules and of more sophisticated tools may be needed to help ease the pressure. Data lineage plays a  vital role in GDPR by mapping the flow of data within an organisation and allowing for full transparency on how it is used. Solidatus helps to build a digital dashboard demostrating to managers how personal data is being used, enabling the ‘Right to be Forgotten’ and laying the groundwork should the regulators ever ask you to prove.

Solidatus for GDPR

Data lineage forms a vital part of the overall solution to GDPR.

Using Solidatus, an organisation has the ability to gain valuable insight into their data landscape. The tool enables an organisation to visualise and analyse lineage to understand what data they hold, what type of data they have and how it moves through their systems.

Through its collaborative and crowdsourcing model, Solidatus allows for quick and effective enterprise-wide identification of personal information. Working with all teams across the organisation, a clear understanding can be made of exactly where data is and how it’s being used in business and IT processes.

Once identified, the data can be clearly mapped out to visualise each contact point and ownership can then be assigned. Once an organisation has this knowledge they are able to quickly and confidently fulfill a ‘Right to Erasure’ request knowing that they have removed it from every possible place it has been held.

Not only does this insight allow for easy completion of a Right to Erasure request, it also proves to the regulator that an organisation is taking a proactive approach to GDPR by clearly documenting and auditing their data landscape and privacy impact assessment metadata. 

The Challenge

GDPR sets out clear rules on the obligation for companies to keep trackable internal records of their data protection activities. They must be able to readily provide documented accounts for how they have handled data and processed any breach without ‘undue delay’.

Companies will need to take a holistic approach to GDPR, working with all business functions to identify data, the golden source, where it is held and ownership.

Learn more

Solidatus for

steps identitifed by the ICO to take now


Maximum fine (global revenue)

Companies need a Data Protection Officer

Becomes law 25th May 2018

See Solidatus in Action

An intuitive, simple to use web-based application that gives businesses the ability to rapidly map and visualise their data landscape.

Meet Solidatus