GDPR
No need to panic - but you do need to act!
What is GDPR?
General Data Protection Regulation or GDPR is a new set of rules that requires businesses to protect the personal data and privacy of European Union (EU) citizens for transactions that occur within EU member states and comes in to effect on May 25 2018.
- Create a data protection plan
- Conduct a risk assessment
- Mitigate risk
- Test your plan/processes
- Ongoing assessment
Basic GDPR Requirements
Who needs to comply with GDPR?
Any company that collects, stores or processes data on EU citizens will need to comply with these strict new rules around protecting customer data even if they do not have a business presence within the EU.
What are the risks of non-compliance?
The GDPR allows for steep penalties of up to 20 million Euros or 4 percent of global annual turnover, whichever is higher, for non-compliance.
How can my business comply with GDPR?
The GDPR obligates you to demonstrate compliance by design which leaves much to interpretation. Businesses must provide a 'reasonable' level of protection for personal data collected but does not provide any detailed guideline on what this actually means. As such many experts suggest a comprehensive and layered approach to information security with continual review processes in place.
How can Depositit help?
Using Depositit's solutions will assist with the compliance process and protect your data and systems against constantly evolving cyber threats. This will allow your business to confirm that it has the 'appropriate' technical measures in place to protect against cyber attacks as well as accidental loss or destruction of files.
IMPORTANT: GDPR reporting - when a threat has occurred businesses will need to provide a report to the ICO and in some instances their network or regulator. Depositit C360 fully protects against threats and when a breach has been defended a compliance report is generated for the customer providing a timeline and audit of what happened, when and where the threat emerged, how it was dealt with and forensically the state of the machine after resolution. Businesses can then send it to the ICO, their network, regulator, insurer, customers or anyone else that requires evidence that the threat has been neutralised.
Call us on 0845 1200 510 or email us to discuss how incorporating Depositit solutions can assist with your GDPR plan and compliance.
If you are unclear what your business needs to comply with GDPR please consult a professional who will be able to advise. The above is not intended to be a comprehensive guide to GDPR but a suggested approach.
As a cloud storage reseller I am very impressed with Depositit's prompt and friendly customer support.
- DS Technologies
View more testimonials
