What is GDPR?
The European Union’s (EU) General Data Protection Regulation (GDPR) creates additional security and privacy obligations for organisations to comply with. All organisations, including those outside of the EU that hold data on European citizens, need to review their obligations under GDPR.
Webinar: GDPR: Beat the Clock
Thursday 26th April,
14:00 – 15:00
Join our upcoming webinar for tips on mapping your current approach to GDPR requirements to better understand your areas of risk.
Addressing GDPR Requirements
Addressing the requirements may differ by organisation, however the general requirements include:
- Data protection by design, requiring organisations to include data protection considerations in their initial process and/or product rather than as an afterthought.
- Greater emphasis on accountability and transparency, requiring organisations to document their cybersecurity processes from prevention to incident response.
- Mandatory reporting of data breaches, requiring organisations to report a breach to the relevant supervisory authority within 72 hours, and to also inform affected customers.
Failing to comply with GDPR can be costly with fines up to €20 million or 4% of annual worldwide turnover. You can’t afford to wait – enforcement starts in May 2018, but you need to start preparing today.
Technology alone won’t keep you GDPR compliant.
As GDPR approaches, many organisations are looking for technology to provide them with the quick and easy answer. However the reality is, that technology alone cannot prepare you for or keep you compliant with GDPR. Organisations who leverage layers of security solutions often struggle to understand the gaps that allow advanced threats like ransomware to leak through. Pure technology solutions also fail to detect unknown threats that don’t have existing signatures or rules.
A comprehensive data protection plan that extends beyond technology is critical to ensuring you have a realistic and actionable strategy for GDPR compliance.
A comprehensive approach to GDPR compliance.
At eSentire, we absorb the complexities of cybersecurity, delivering enterprise-class protection against advanced cyber-attacks. With our white-glove service, we act as an extension of your team, serving as a trusted advisor in complying with growing regulatory requirements.