As a global society, we need to trust our privacy is safeguarded. Monday marks the second anniversary of GDPR, and it also marks the tip of the iceberg with regards to the protection and consumer control of consumer data. Below, experts from cloud data protection provider, Druva, and digital transformation company, Infoworks, shared their thoughts on the current state of GDPR and how to best maintain compliance during these unprecedented times. It’s important to learn how BUDR providers have responded to this regulation, as it speaks to the amount of assistance they can provide. With all of that taken into account, it’s clear that a thorough backup and disaster recovery (BUDR) solution is crucial in the age of GDPR. The Information Commissioner recommends that organizations consider building a data compliance team to ensure that your organization remains compliant. Educating your staff should come as one of your first steps in achieving full GDPR compliance. If your company plans on being 100% compliant with GDPR, it can’t just be a concern for your IT and legal departments. Compliance Requires Awareness of the Entire Organization Because GDPR requires that organizations have access to the most current data, frequent and regular backups are incredibly important. If backups are not already automated, it may be a good idea to increase the frequency to keep in line with your live data. Before signing an agreement with a backup solution, you should consider making sure that the provider holds some Cyber Essentials Security accreditation. It’s absolutely critical that your backup provider tests the effectiveness of their solution on a regular basis. Because this outsourced solution provider will be managing your data, they fall under the term, “data processor”, which in turn means they will be responsible to comply with GDPR as well. While this is possible, it’s only a small step in achieving full GDPR compliance. Many organizations choose to outsource their backup solutions. That being said, it’s evident that organizations needed to have the necessary backup and disaster recovery strategies in place and test those backup solutions regularly and thoroughly. In article 32, the GDPR act mandates a) the ability to restore the availability and access to personal data in a timely manner and b) a process for regular testing, assessing and evaluating the effectiveness of technical and organizational measures. Backup and Recovery are Critical Under GDPR
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |