Smarter Bidding ProgrammeSelecting and implementing a modern bid & pipeline platform, live by end of September
Section 12 / 22
Export full PDF

Data Migration & Integrity

From fragmented Excel to a governed pipeline of record

The single biggest risk to 30 September is not the platform; it is the migration. Ten years of pipeline data sits in Excel workbooks in fourteen countries. This section is the plan to get it out, clean it up, and land it in a governed system without losing anything of commercial value.

Ten principles

Rules the migration will hold to

  • One pipeline of record, no shadow spreadsheets
  • Deduplicate on client + opportunity, not on filename
  • Fields typed and validated at import, not at report
  • Ownership assigned to a named person for every record
  • Retention rules applied: closed bids archived after 24 months
  • Access role-based, not shared logins
  • Audit trail on every field, from day one
  • GDPR: no personal data beyond named contacts, lawful basis logged
  • Country-specific data residency respected
  • Data quality scored monthly, published to country leads

Migration confidence model

Six things leadership can rely on

01

Data inventory

Every bid workbook found, catalogued and assigned an owner before migration.

02

Cleanse rules

Standard rules for duplicates, blanks, currency, dates and stages agreed with country leads.

03

Reference data

Clients, currencies, stages, roles standardised centrally before any load.

04

Load & validate

Automated import with validation reports; failures fixed at source, not overridden.

05

Sign-off

Country lead signs off migrated pipeline vs their own Excel baseline before switch.

06

Freeze the past

Excel workbooks moved to read-only archive on switch day. No dual running.

Migration flow

Six stages from Excel to platform

Step 1

Discover

Every Excel bid workbook found across shared drives, SharePoint and inboxes. Owner assigned.

Step 2

Map

Column-by-column mapping to platform fields. Ambiguity resolved with the country lead, not guessed.

Step 3

Cleanse

Standardised clients, currencies, stages, dates. Duplicates merged with an audit note.

Step 4

Load

Automated import in test tenant first, then production. Every load produces a validation report.

Step 5

Reconcile

Country lead compares migrated pipeline to their own baseline. Discrepancies logged and cleared.

Step 6

Cut over

Excel workbooks locked read-only. Platform becomes the sole source of truth from that hour.

GDPR / DPIA checklist

Eleven items completed before Bulgaria go-live

  • Data categories: opportunity, client, contact, pricing, internal roles
  • Personal data limited to named business contacts (name, email, role)
  • Lawful basis: legitimate interest, documented
  • No special category or sensitive personal data in scope
  • International transfer: data hosted in EU region by default; country-specific residency configured where required
  • Access controls: role-based, MFA, quarterly access review
  • Retention: closed bids archived after 24 months, deleted after 6 years
  • Sub-processors: vendor DPA in place before go-live
  • Data subject rights: standard SAR / erasure process routed via DPO
  • Breach response: aligned to group incident procedure with 72-hour reporting
  • DPO review scheduled annually and on material change

Data retention

What we keep, for how long, and why

Data categoryRetention periodBasis / rationale
Live opportunity dataDuration of bid + 24 monthsLegitimate interest, commercial audit
Won bid / contract link6 yearsLegal, tax, contractual
Lost bid record24 monthsLessons learned, competitive analysis
Content library assetsRolling, reviewed annuallyLegitimate interest
Named business contactsDuration of relationship + 24 monthsLegitimate interest
Audit / access logs24 monthsSecurity & assurance

Data & migration RACI

Who owns what

AreaResponsibleAccountableConsultedInformed
Migration plan & sequencingProject ManagerExecutive SponsorCountry leads, VendorSteer group
Data cleansing rulesData LeadProject ManagerCountry leadsVendor
Reference data (clients, stages)Data LeadCommercial LeadCountry leadsSteer group
Country reconciliation & sign-offCountry LeadExecutive SponsorProject Manager, Data LeadSteer group
GDPR / DPIA sign-offDPOExecutive SponsorLegal, Project ManagerSteer group
Access controls & reviewIT LeadDPOCountry leadsAudit
Archive & lock of Excel workbooksIT LeadProject ManagerCountry leadsVendor