Are you Ready for GDPR?
The European General Data Protection Regulation (GDPR) comes in to effect on the 25th May, standardising Data Protection laws across Europe and introducing stricter rules and guidelines (along with harsher penalties for non-compliance) regarding the way organisations record, manage and secure access to Personal data. Organisations need to implement and be able to demonstrate a framework for accountability of the Personal Data they hold.
One of the key aspects of GDPR are Data Subject Rights. The rights of individulas to have control over the personal data you hold about them and what you do with it. One of the key technical challenges with that is knowing exactly what data you have where, in order to be able to satisfy Information Access Requests.Learn More
It is vital to have robust procedures in place to manage the flow of information around an organisation and to carefully manage privileged access to data.
Organisations must be able to demonstrate that they have taken all reasonable measures to protect any Personally Identifiable Information from unauthorised access, and in the event of a breach provide notification within 72 hours.