Making Data privacy compliance efficient for Legal & Data teams

Improves productivity, saves time, & money on legacy spreadsheet vendors

Problem statements, Which data informed what, Interface design & Outcomes

Why this product exists

Enterprise teams need robust workflows to manage GDPR compliance

Since the passing of EU GDPR bill into law, Companies now have to document the decisions they make around the collection, use and storage of users personal data. This is called Record of processing activity (ROPA).

The process of managing ROPAs was through spreadsheets. This method is laborious and tedious. This is a solid market opportunity.

Goal is to build a solution which significantly improves the experience.

This new web app provides another source of revenue for the company.

SaaS lawyers

Data security teams

High level audience

How might we build a web app that's easy to use, and automates common tasks so that maintaining a ROPA document feels effortless?

Why it matters

Data protection is now directly tied to a company’s bottom line

Fines for companies that fail to comply with the GDPR Data privacy law can range from 2% - 4% of annual global revenue.

Learning their context

Manually tracking these scattered records, which might not be up-to-date

This core datapoint uncovered by Interviews revealed the existing way of working

This workflow is tedious & error-prone

ROPA is a compliance document mandated by the EU GDPR laws for startups that collect user personal data. This product makes the filing and management more efficient.

Expected user achievement

Tracking data sources, assigning records to team members

A good solution acknowledges the user’s existing mental model

Onboarding flow

An overview for all records - both manual inputs, & generated records from the systems

User wants to manually add records

Filtering flow

Tab flow to add new security measures

Status view of all Data protection obligations required as a data processor/controller

Toast which pops up when rows are multiselected

Making bulk edit action on records

Actions confirmation modal

Learning their context

What influenced my design decisions

PRD, lofi sketches & Inspirations

A Product specification document detailing how it fits in the Governance ecosystem

Outcomes

The Business impact

1/3rd of the existing customers bought the ROPA app. Also, this became a key template file, as many custom components I designed got pushed to the global design system.