The injection of modern artificial intelligence technologies into data governance tools is streamlining regulatory compliance work across industries.
The latest example comes from Relyance AI and its new Asset Intelligence and Data Security Posture Management tool, which aims to help organizations of any size manage their data protection needs amid advancements in AI and evolving jurisdictional regulations. Relyance AI Director of Product Sanket Kavishwar said the tool utilizes a "three-pronged approach" of understanding contractual obligations with vendors and customers, data discovery core analysis, and layering-on data governance and security configuration controls.
Kavishwar said Relyance AI's new solution provides complete visibility to all sensitive data stored by an organization. The tool employs static code analysis to map physical data flows while also simultaneously reviewing an organization's existing data processing agreements in real time to ensure a company’s data storage practices match their obligations under a given jurisdiction’s requirements, as well as third party contracts.
When organizations enter an agreement with a third-party vendor for a given data processing purpose, Kavishwar said, the responsibility of ensuring only the agreed upon data is transferred falls on the contracting firm. The Asset Intelligence and DSPM tool directly integrates with the customer’s API and will flag organizational shortcomings in terms of legal and contractual obligations.
"Our goal is that we’re mapping (your stored data) back to your obligations," Kavishwar said. "We grab the actual physical locations of different assets, and if there is a mismatch from there, those are the kinds of insights we drive for privacy and security."
Kavishwar indicated a key problem for organizations is that privacy, security and data governance teams often use disparate terms when discussing the same concept. For instance, the privacy team may use “data mapping,” while the security and governance teams might use the term "data cataloging." He said the new tool from Relyance AI "bridges the gaps" among teams and gets them all on the same page to meet data protection and storage obligations.
Enterprise-level customers have deployed the new tool for use by both their privacy and data security teams as a check on each other’s to meet their respective responsibilities, according to Kavishwar.
"These teams sort of talk about a similar problem in different ways," he said. "We can do data discovery, we can fill in your data map automatically with a bunch of integrations, but the additional contract piece is your obligation layer. From that point on, we can tell our customers there is a potential violation because where we found a third party from our source code analysis, but we don't see an associated (data privacy assessment) associated for that."
In terms of availability and targeted clientele, the new tool does not carry a specific aim. Kavishwar said the goal is to help organizations "punch above their weight" in terms of streamlining data privacy compliance and security. Therefore, the solution suits businesses of all sizes.
"We have a core privacy foundation and with Asset Management and DSPM, we’re adding the security and governance layer," Kavishwar said. "Our goal is to help our users not work in silos. That is the only way to build trust with customers."
Alex LaCasse is a staff writer for the IAPP.