How Process Tempo helps businesses become General Data Protection Regulation (GDPR) compliant

To meet the requirements of GDPR, businesses need to know how they collect customer data, how it is processed, how it is used both internally and externally, and how it is stored. To address this, organizations need to develop a map of the customer data journey. This map will identify all of the possible people, systems, processes and policies that interact with this data from start to finish.

Process Tempo is a perfect choice for building this customer data map for three main reasons:

One: It is very simple to use which means the map will represent a broader coalition of thinkers and not just the knowledge from a handful of people.

Two: It is very flexible. Process Tempo enforces simple rules based on a pre-built metamodel for the purposes of consistency. Beyond that, the terms and concepts used are your own.

Three: The content created in Process Tempo can be queried and used as the basis for reports and analysis. We can do this because we store model content in a database and not in individual files. The models you create are not just pretty pictures.

We have also built a GDPR metamodel that captures the central themes of the regulation. This model will help you to identify and document concepts such as where personal data is stored, who are the data processors, the data controllers, the systems used, etc. If you are interested in using this model with your Process Tempo account contact us.

In the example below, I have begun by modeling the different areas of the business that are impacted by the GDPR Project. The yellow icons are the different business processes which I believe are involved, the light gray icons are customer related data which they leverage. Also important are the software systems involved (dark gray), the terms used (brown) as well as the policies involved (teal). This model is just one lens into the business from my perspective. Keep in mind there is a rich set of data behind each of these icons that you cannot see in the image.

The value of Process Tempo skyrockets when multiple users begin to collaborate. For example, another user in my organization has documented a project for upgrading the existing CRM system to (see below). When this project was designed there was no consideration for GDPR and the model and its content were implemented by a completely different business unit. Yet since Process Tempo enforces consistency and supports cross-domain sharing, I am able to leverage this past work for my benefit.

I uncovered this model when I searched for “Web Data” since data collected from the web is pertinent to GDPR. This model tells me that there are systems and data sets in use that I should learn more about.

Without Process Tempo, this information would require days, if not weeks, of fact-finding to uncover. It would also require cataloging information in a consistent fashion which doesn’t happen in the real world.

With Process Tempo, I can simply search for relevant data and determine if it is impacted by GDPR or not. In addition, I can incorporate existing information into my own model. Process Tempo maximizes reuse whereas traditional approaches (often those that leverage spreadsheets) would force me to start from scratch.

Finally, one of the greatest benefits of using Process Tempo is the reporting and analysis I can perform. An example query could be: “Show me all concepts that interact with customer data”. The results will provide me a quick view of all the systems, policies, roles, etc., that connect directly to customer data (the blue icons):

This screenshot is output from my simple demo environment and already you can see how complicated supporting this regulation could be. Imagine not having this mapping ability?

Process Tempo can help you achieve compliance by making it easy to collect and store data in a central repository and supporting your analysis needs so that you can prepare the business for the upcoming GDPR regulation. Without it, organizations will face an uphill challenge trying to meet this new regulation.

For more information please visit our website at