Getting reliable information on the existing data
Financial services firms are under considerable regulatory pressure to have their data in order. Systemically important banks need to comply with the BCBS 239 regulation, published in January 2013, to strengthen risk data aggregation capabilities and internal risk reporting practices. And compliance with the harmonized EU General Data Protection Regulation (GDPR) is mandatory for them starting 25 May 2018, as is the case for any other organization processing data of EU residents.
The need to sustain compliance with these new regulations, and ward off the substantive noncompliance fines, created the momentum for our client to launch a data governance program and set up a department dedicated to managing data throughout the entire organization. The primary challenge faced by this new unit was to identify and deploy the technologies needed to inventory and document existing data and to keep that inventory up to date.
We opted for a twofold approach to support our client in resolving this challenge. Starting from what is minimally required to sustain compliance with the BCBS 239 and GDPR regulations, we identified the Collibra technology needed to build an adequate solution. But then we also started looking into how the return on the substantial investment in Collibra data governance technology could be maximized.
In particular, we jointly identified use cases that were of strategic importance to our client’s operations, and that could easily be enabled by limited extra investments creating substantive added value for our client. At the same time, these use cases helped inspire our clients' employees to understand the concrete benefits of the data governance project better – creating the level of engagement that is critically needed for this type of project.
Who we worked with
Working in entrepreneurial-spirited teams
The entire data governance project was a team effort. By working closely with our client’s Data Governance and Quality Department and with an external partner specialized in Compliance and Regulatory Affairs, we put our specialist knowledge on data governance technology into practice to translate both our client’s needs and the regulators’ requirements into a future proof Collibra implementation.
Thriving on the entrepreneurial spirit in the newly established data department, we encouraged our client to take a hands-on approach. Implementing data governance practices is a continuous work in progress. While validation obviously remains essential, implementing “the best as we know today” and then continuing to improve is vital to delivering results in time.
What we did
Implementing a data communication backbone
With over 400,000 reports produced on a yearly basis, traceability of these reports and the related data was an essential issue for our client given the need for regulatory compliance. Using Collibra, a data communication platform including a data help desk and featuring workflows to manage data across the enterprise, we built a solution that enables our client to capture traceability. That could be achieved by linking our client’s data sources, business applications, data quality tools, metadata, reference data and data policies into a single system – putting in place the backbone of an active data governance approach.
Using data as a strategic asset
By building a platform that documents the traceability of data and reports, we helped our client establish data governance processes and controls to sustain compliance with BCBS 239 and GDPR regulations. While that helps ward off substantial fines, the benefits of the solution we put in place go far beyond the scope of regulatory compliance.
The platform that we implemented made it significantly easier for our client to access their massive amount of data and reports, and delivered increased confidence and trust in lineage and quality of the data. That not just enables a better and more efficient use of these data in the first place, it also facilitates a quality assessment of the numerous reports and business applications that have been deployed over time. The result of that? It becomes easier to manage reports and applications, to understand the impact if any of these need to be replaced, and to save on maintenance costs.