All companies and organisations, regardless of their activity, location and size, that process data of individuals and/or legal entities residing in the EU.
To return to citizens the control of their personal data, harmonize the protection of the rights and fundamental freedoms of natural persons in relation to the activities of processing of personal data and guarantee the free circulation of these data among the Member States.
A new figure is defined within entities, companies, institutions or any agent that processes personal data; it is the Data Protection Officer (DPO). The Data Protection Officer guarantees, independently, that the regulations on the protection of personal data of individuals and companies are being applied correctly.
The DPO will have the legal obligation to notify the Supervisory Authority and those affected, any incident, attack or vulnerability that has put the information at risk, within the next 72 hours.
Article 25, on Privacy by Default and Definition, establishes the obligation to define business processes designed for data protection. Which entails to designate high privacy settings, apply technical measures and procedures managed by the new figures to ensure full application throughout the business process and compliance with the regulation.
Failure to comply with the data protection law, according to article 83, entails the imposition of high administrative fines of up to 20 million euros or up to 4% of the global turnover.
The new regulation will be applicable as of May 25, 2018.
In order to demonstrate that companies are complying with the European Data Protection Regulation, IT managers should:
Implement solutions that allow data to be stored and guarantee the veracity of data over the years.
Cloud Email Archiving prevents the alteration of the content of the mail making it immutable. Automatically, the email is indexed, marked with guarantee of integrity and archived. In addition, it provides virtually unlimited storage capacity.
Define a high level security strategy, which reinforces the protection and privacy of data, acquiring tools designed for that purpose.
Cloud Email Encryption & DLP is an encryption and data leak prevention solution that relies on a powerful centrally defined policy engine. Its engine based on predefined corporate rules, not only encrypts the messages but redirects them and prevents confidential information from being distributed over the internet to the wrong people.
How to guarantee the information's protection and comply with European regulation - GDPRView