Privacy has greatly evolved over the past decade alongside major shifts in regulatory, technology and societal landscapes. Understanding how data is flowing through your organization is a pre-requisite to being able to establish trust between businesses, employees, and consumers. This understanding is gained through data mapping, a fundamental operation that informs all outputs of the organization's privacy program including acceptable use policies, privacy notices, procedures for fulfilling subject requests, and data governance policies including access, retention and minimization.
Data mapping is not something that can be 100% automated. When deployed effectively, data mapping doesn't automate privacy teams out of operations rather, it automated privacy teams into operations.