Are You Ready for GDPR?
The European General Data Protection Regulation (GDPR) comes in to effect on the 25th May, standardising Data Protection laws across Europe and introducing stricter rules and guidelines (along with harsher penalties for non-compliance) on how organisations record, manage and secure access to Personal data. Organisations need to implement and be able to demonstrate a framework for accountability regarding the Personal Data they hold.
Discover - What do I have and Where is it?
One of the key aspects of GDPR are Data Subject Rights. The rights of individulas to have control over the personal data you hold about them and what you do with it. One of the key technical challenges with that is knowing exactly what data you have where, in order to be able to satisfy Information Access Requests.
Microsoft Office 365
Talk to us about the features of Office 365 that can aid you with data discovery and Compliance.
Data Loss Prevention (DLP)
Enterprise Mobility Suite
ScanR PII Discovery
ScanR from TermSet is a simple low cost software utility for discovering Personally Identifiable Information (PII) in all types of structured and unstructured documents.
Find where you have PII
Automate Right to be Forgotten Requests
Facilitate Subject Access Requests
Manage - Who can do what with my data?
It is vital to have robust procedures in place to manage the flow of information around an organisation and to carefully manage privileged access to data.
Microsoft Office 365 Advanced Data Governance
Talk to us about the advanced Data Governance features of Office 365
Automate Data Retention & Deletion
Customer Lockbox - Explicit Data Access Authorization
Supervise Employee Communication
Migrate On-Premise Data to 365
Microsoft's IaaS Cloud Platform Azure offers many Data Management benefits
Consolidate Data in the cloud - manage in one place
User Access Control with Azure AD (Active Directory)
Monitor Compliance Across Cloud Services - Service Trust Portal
Protect - How do I keep my data safe?
Organisations must be able to demonstrate that they have taken all reasonable measures to protect any Personally Identifiable Information from unauthorised access, and in the event of a breach provide notification within 72 hours.