GDPR
Wiping & Encryption Compliance for the EU General Data Protection Regulation
Knock out GDPR Compliance Worries with Jetico’s Data Protection Software
The General Data Protection Regulation (GDPR), introduced in 2016, is effective since May 25, 2018. The regulation is of global interest as it impacts any company handling the data of European citizens – regardless of where the company is based. Organizations that don’t comply with GDPR will be fined, and the penalty is hefty.
Compliance preparation starts with developing and following a data protection strategy. A solid and efficient strategy includes data wiping and encryption.
GDPR Data Wiping
- Data wiping is a key aspect of the “Right to Erasure” (or “Right to Be Forgotten“) under GDPR.
- According to Article 17, “The data subject shall have the right to obtain from the controller the erasure of personal data concerning him or her without undue delay and the controller shall have the obligation to erase personal data without undue delay” when certain conditions are met.
- To help your organization with GDPR, we offer BCWipe to wipe selected files and folders and BCWipe Total WipeOut to erase entire hard drives.
GDPR Encryption
- GDPR strongly recommends data encryption as part of the “appropriate technical and organizational measures” for protecting personal data in Article 32.
- Encryption can help reduce compliance burdens under GDPR. Article 34 states that if data is encrypted and therefore rendered unintelligible, organizations are exempt from notifying affected individuals in the event of a data breach.
- To help your organization with GDPR compliance, we offer BestCrypt Container Encryption to safeguard files and folders and BestCrypt Volume Encryption to protect entire hard drives.
With Jetico, You Can
To help your organization with GDPR, we offer data wiping and encryption solutions:
Need Help with GDPR Compliance?
Our data protection specialists are here for you.
About GDPR Compliance
The General Data Protection Regulation (GDPR) is a comprehensive privacy law designed to protect personal data and enhance individual rights within the European Union. The main goal of this regulation is to ensure the confidentiality and security of personal information by setting strict standards for data processing, storage and sharing. GDPR applies to any organization, regardless of location, that processes the personal data of EU citizens.
Organizations that don’t comply with GDPR will be fined, and the penalty is hefty. If a company chooses to forgo compliance, for whatever reason, they can be fined up to four percent of their global annual turnover.
Under GDPR, organizations must notify the relevant supervisory authority of a personal data breach within 72 hours if it poses a risk to individuals’ rights and freedoms. In cases where the breach is likely to cause significant harm, affected individuals must also be informed. However, having encryption in place can provide a crucial exemption from these notification requirements. If the breached data was encrypted, rendering it unintelligible to unauthorized users, the organization is not obligated to notify affected individuals. This makes encryption a valuable tool for reducing compliance burdens while enhancing data security.
Be sure to check out our other blogs covering compliance strategies and best practices, and learn how to meet the data wiping and encryption guidelines for GDPR compliance.
News & Blogs
Stay updated with the latest news, insights, trends and expert tips on data protection and cybersecurity
Check back here regularly for news and blogs