GDPR Compliance

European Union General Data Protection
Regulation (GDPR) Compliance

All organizations globally that collect or process personal data on residents, visitors and expatriates within the European Union are required to comply with the new EU General Data Protection Regulation (GDPR).

Companies who fail to comply will face stringent penalties of up to 4% of their annual global turnover, or €20 Million (whichever is greater).

The GDPR was adopted to protect the personal data of individuals within the EU. Personal data is defined as any information related to a natural person or ‘Data Subject’, which can be used directly or indirectly to identify the person. It can be anything from a name, a photo, an email address, bank details and posts on social networking websites to medical information or a computer IP address.

THE SAFE-T SOLUTION

The GDPR requires organizations to prevent “accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to personal data transmitted, stored or otherwise processed.”

Safe-T offers a best practice approach to prevent unauthorized access to data services, networks and APIs. This helps to prevent most of the key threats that could lead to GDPR fines: data exfiltration, leakage, malware, ransomware and fraud. You can see a detailed description of how we can help you comply with the GDPR

Focus on compliance

Safe-T’s Software Defined Access Suite has been designed with compliance in mind and helps organizations protect personal data to meet the required criteria.

To achieve this, Safe-T supports efforts to meet strict standards for Authentication, Access Control, Encryption, Integrity, and Audit

Authentication and Access Controls

  • Access to Safe-T’s secure vaults is only permitted to authorized users with unique user IDs

Encryption

  • User IDs and passwords are encrypted both at rest and in transit
  • Forced encryption over SSH/SSL for client connections to Safe-T server
  • Configurable encryption down to folder level
  • Session encryption using strong 256-bit AES

Integrity

  • Package and file-level integrity checks, using third party tools
  • Digital signage support
  • Encryption of data in transit

Audit

GDPR requires continuous compliance and Safe-T support this with

  • Logging of all package and file transfer activity
  • Targeted reports which are generated on demand
  • Integration with Windows Event Viewer
  • Connection to third-party SIEM tools