GDPR Changes the Way Businesses Manage Their Data

Privacy must be designed into systems that process, store, and protect data

Data breach notifications must be made within 72 hours

Businesses need a Data Protection Officer (DPO)

Penalties for non-compliance can be as high as 20M Euro

Actifio’s Enterprise Data-as-a-Service Software Delivers Modern Data Management
Capabilities to Address Regulatory Challenges

Exert greater data control by virtualizing secondary copies

Break down data silos to create data system of record

Protect critical data with built-in data sensitivity flags

Manage full lifecycle of data, on-premises or in the cloud

GDPR, a Global Game-Changer

According to a survey conducted in 2017 by consulting firm Baker Mckenzie, 70% of respondents believe that organizations will need to invest additional budget/effort to comply with the consent, data mapping and cross-border data transfer requirements under the GDPR.  In addition, nearly 45% of respondents indicated that they either do not have the tools to ensure that their organization complies with the main requirements under the GDPR, or else could only obtain such tools at significant cost..  Almost 30% of respondents agreed that the GDPR represents a “Global Game-Changer.”

 

Key questions to ask regarding your data management and data privacy strategy:

  • Are you using multiple technologies to manage secondary copies of your data?
  • Do you have multiple, physical copies of production data spread throughout the enterprise – for development, test, training, analytics, and more?
  • Is personally identifiable data flagged as sensitive in your systems?
  • Are you obfuscating or anonymizing PII in a consistent, programmatic fashion?
  • Have you adjusted your retention policies in the face of new privacy requirements?
  • As you design privacy into your systems, do you have the ability to rapidly spin up development and test environments?

 

Regardless of your company size or industry, GDPR will have significant implications on how you design, manage, store, and protect data.  The technologies you choose to assist in compliance should be applicable to a broad set of data management requirements, to assist with current and future regulatory requirements.  Actifio’s Enterprise Data-as-a-Service software platform is a powerful solution for modern data management.

Request a Conversation

 

Frequently Asked Questions

 

What is GDPR?

The General Data Protection Regulation (GDPR) is a law enacted by the European Union (EU) that governs the privacy, protection and reporting of personal data.  GDPR was approved by the EU parliament on April 14, 2016. The law “applies to all companies processing and holding the personal data of data subjects residing in the European Union, regardless of the company’s location.”

When did GDPR start?

The enforcement date of GDPR was set for May 25, 2018. The first companies accused of violations were Facebook and Google.

What does GDPR mean?

GDPR includes many specific requirements, and below is a quick summary. You can find more details on the official GDPR website.

Breach Notification: GDPR compliant organizations must notify end users of any data breaches within 72 hours of first coming aware of the situation.

Right to Access: Compliant companies must provide the personal information stored about each end user and information regarding how the data is being used and where it is stored on request by the data subject.

Right to be Forgotten: This requirement entitles a data subject to have his/her personal data erased and have it no longer disseminated to third parties or exposed to third party processing.

Data Portability: This rule requires GDPR compliant companies to provide end user data in a commonly used and machine readable format” on-demand allowing users to take their data to another data user.

Privacy by Design: Privacy by Design requires the inclusion of data protection at the onset of system design versus being added later.

Data Protection Officers:  DPOs are mandatory for those companies whose core activities include systematic monitoring of customer data on a large scale or hosting data relating to criminal convictions and offenses.

Who does GDPR affect?

While GDPR is an EU regulation, it impacts all companies that do business in the EU. Thus, it has a global impact.

 

LEARN MORE TODAY

Gartner calls us visionary.  Our customers call us transformational.  Learn how over 3,500 customers in 38 countries have turned Enterprise Data-as-a-Service into savings, improved protection, and business acceleration.

LEARN MORE