🇧🇷
Changing the way businesses are regulated in accordance with GDPR
Zelocode by Exacta was created to help companies comply with GDPR (General Data Protection Regulation) requirements, facilitating compliance and ensuring data security and privacy.
Challenge:
Companies were struggling to understand and implement GDPR requirements and needed an efficient and secure solution.
Goals:
Develop an intuitive platform that would simplify GDPR compliance while ensuring data security and privacy.
GDPR Compliance and Challenges
Level of familiarity of companies with the GDPR topic in Brazil in 2020
🙂 31% said they had made changes to the company structure to comply with the law.
💡 63% of the companies stated that they were aware of the GDPR but were still without an adequacy.
User Research and Understanding
User Profile:
Our target audience included compliance professionals, IT managers, and privacy consultants, all facing significant challenges in ensuring their organizations complied with GDPR.
Objectives:
• Ensure GDPR compliance.
• Facilitate secure and efficient data management.
• Reduce the risk of data breaches and associated fines.
Methodology:
We used interviews and workshops with stakeholders, analysis of existing data, and tools like Maze to validate concepts and gather feedback.
Research Results:
• Challenges Identified: Companies struggled to understand and implement all GDPR requirements.
• User Needs: Simplified and integrated compliance management solutions, intuitive dashboards, and automated workflows.
Pain
• Difficulty in understanding and applying GDPR requirements.
• High risk of data breaches and associated fines.
• Time-consuming and error-prone manual processes.
Gain
• Achieving streamlined and efficient GDPR compliance.
• Reducing risks of data breaches and fines.
• Enhancing confidence in data security and management practices.
Concept Creation and Validation
Strategic Blueprint:
We developed a strategic blueprint to map out the necessary features and workflows for the solution. This blueprint was continuously adjusted based on feedback received.
Concept Validation with Maze:
• Interactive Prototypes: We created interactive prototypes and used Maze to test and validate concepts with real users.
• Feedback and Iterations: Feedback was collected and used to rapidly iterate on designs, ensuring user needs were met.
Design Sprint and Mistakes
Actions:
• Conducted multiple design sprints to continuously refine the solution.
• Focused sessions on identifying pain points and improvement opportunities.
• Engaged users and stakeholders in iterative feedback loops.
Learnings:
• Early user involvement is crucial for understanding real-world challenges.
• Rapid prototyping and testing accelerate the refinement process.
• Flexibility and openness to feedback lead to more effective solutions.
Mistakes:
• Initially underestimated the complexity of users’ needs, leading to overly simplistic early designs.
• Overlooked some security concerns in initial prototypes, which were later addressed.
• Some user feedback sessions were too narrowly focused, missing broader compliance issues.
UI Design and Handoff
Based on insights and validations, we moved to the design phase, creating low and high-fidelity wireframes. We involved stakeholders to ensure expectations were met.
Dashboards
The user experience was improved with a user-friendly couple of dashboards and simple-to-use tools.
Users have access to a SaaS platform on which they can find all the necessary tools simply in a side menu.
File upload
The file upload screens with sensitive data provide a sending history of the last files for quick consultation and viewing.
Implementation workflow
It was identified during the research that the steps of the task workflow would bring more confidence to the user with the feeling of a successfully executed task.
Set URL for cookies
Fully intuitive configuration of URL and cookie windows for websites and web systems.
All in one
By also adding the platform's payment plans, we were able to implement an important request from the business team, which was identified in the Blueprint Strategy.
Success Metrics
Conformity:
95% of companies have achieved full GDPR compliance.
Time Reduction:
40% less time needed to manage compliance processes, equating to approximately 60 hours saved per month.
User Satisfaction (NPS):
The Net Promoter Score (NPS) improved from 30 to 70, indicating a significant increase in overall user satisfaction compared to pre-Zelocode processes.
Closing notes
The ZeloCode Exacta solution significantly improved GDPR compliance and operational efficiency for the companies selected for the pilot, generating time savings and reducing the risk of fines.
Future directions:
NPS has demonstrated some resistance from some users, so they plan to continually improve the platform by incorporating ongoing user feedback and implementing comprehensive monitoring metrics to continually optimize the user experience. Unfortunately, I left the company before following this evolution.