GDPR DATA PRIVACY RIGHTS
Protect sensitive data to avoid costly fines and reporting requirements while supporting personal data rights.
Avoid Costly Breach Mitigation Requirements
The European Union (EU) General Data Protection Regulation (GDPR) applies to all organizations controlling or processing the personal data of EU data subjects, and holds them responsible for implementing data protection processes that ensure the privacy of such data. While GDPR is an EU regulation, it has global reach and any organization holding information on an EU data subject can be penalized for loss or misuse of that personal data. Non-compliance can result in significant fines of up to 20M Euros or 4% of annual turnover (total revenue).
The GDPR is centered around the concept that privacy is considered a fundamental human right, and most of the core Articles in the regulation support the individual. At a high-level, organizations need to support and be in compliance with several fundamental Rights:
- To know what data is collected, used, and how long it is stored
- To see data in a readable format and have errors corrected
- To have access to data in a portable/useable format
- To be forgotten and have all identified data deleted
- To be notified of a data breach in a timely manner
Prepare and Protect with DataKeep
DataKeep addresses the most stringent compliance requirements across all industries with built-in data access processes, cryptographic policy enforcement, data destruction, access auditing and integrated key management. DataKeep encryption and access policies supports Articles 33 and 34, which state that no notification is necessary if the lost data was rendered unintelligible (encrypted) to any person who is not authorized to access it and is unlikely to result in a risk to the rights and freedoms of natural persons.
Providing the Data Protection in GDPR
“DataKeep’s data-centric model enables our government and DoD customers to leverage the benefits of cloud-based computing and storage without risk by protecting sensitive data from the point of creation to deletion, and not just while the data is in storage.”
Eric Vollmecke, president of SENGEX
"SecurityFirst's DataKeep solution is integral to CMA's overall cybersecurity Risk Management Framework solution portfolio with its best-in-class data-centric protection capabilities. DataKeep's ability to safeguard federal organizations’ data across on-premises, cloud or hybrid environments positions it ideally for most every solution strategy and architecture."
John H. Frey, Director, Channel & Alliances, GWAC Program Manager