In May 2018, the General Data Protection Regulation will take effect, a privacy law that defines principles and specific rules for any organization, globally, who collects or analyzes data on European Union individuals. Cloud computing can provide a set of challenges that Skyhigh’s solutions can help address.
The GDPR strengthens existing laws and introduces new demands that requires all of us to review our existing data, the data flows, how we interact with individuals, collect and process their data, who we share it with, what we do to keep that data safe and what we need to do if data is lost, changed or unavailable.
The first part of our book “GDPR – An Action Guide for IT” was written to help IT staff to understand the regulation.
Conforming to the GDPR is a serious undertaking that should be driven by senior management in conjunction with the governance, risk, and compliance teams. IT and information security have a large part to play because of their technical capabilities and ability to monitor, control and secure data, devices and track user access and file movement.
An important requirement of the action plan is planning and documenting the procedures being deployed to keep personal data safe. The second part of our book “GDPR – An Action Guide for IT” suggests the basis of an Action Plan to implement appropriate policies, procedures and security measures.
GDPR series part 1: Major aspects of GDPR regulations, implications and definitions
The European Union General Data Protection Regulation (GDPR) will come into force throughout the European Union on May 25th 2018...
GDPR series part 2: the power shift to citizens and role of the supervisory bodies
The European Union General Data Protection Regulation (GDPR) will come into force throughout the European Union and European Economic...