for companies to comply with the GDPR
The GDPR affects any organization that stores and handles the data of citizens of the European Union, even if they do not have physical presence in Europe.
New requirements that will affect the way data protection figures in your IT processes. Naming a Data Protection Officer.
Requirement to notify the authorities about any security incident involving personal data within 72 hours after the company becomes aware of the personal data violation.
The GDPR requires greater transparency. Users will be able to request the erasure of their data (“the right to be forgotten”), and will have the right to data portability, the right to access, and the right to be notified of any data violation, among other rights.
Managing and disclosing personal data while having to control and inform on where it can be found, how it is collected and stored, and who can access it.
Managing identities and accesses, following applicable identity policies that are transparent and documented, as well as tools that allow for authorization and authentication to guarantee security.
The legislation is applicable from May 25, 2018.
It affects any company that handles the personal data of natural persons belonging to the EU.
Businesses are required to report to the notified body about any security incident involving personal data.
They have up to 72 hours to do so from the moment the incident is discovered
Up to 20,000,000€ in fines for non-compliance with the regulation.
Other implications are: loss of trust, reputational damages, or cease of business operations.
A Data Protection Officer in charge of consulting on and supervising GDPR compliance is required.
This position can be carried out by an internal or external resource.
Real-time data security, visibility and control
Panda Data Control is designed to assist organizations in complying with data protection regulations, as well as discovering and protecting personal and sensitive data both in real time and throughout its lifecycle on endpoints and servers.
Panda Data Control discovers, audits and monitors unstructured personal data on endpoints: from data at rest to data in use and data in motion.
It prevents uncontrolled access to your company’s sensitive data and it will help you to comply with the new GDPR data protection regulation.
Discover and Audit
Identifies users, employees, devices, or servers in your company with access to Personally Identifiable Information (PII).
Implements proactive measures for operations involving PII helped by reporting tools and alerts, in real time, on leaks, use, and suspicious unauthorized transit.
Monitor and Detect
Monitors operations for data in use and data in motion. Data classification and inventory with machine learning techniques.
Control of Personal Data
Demonstrate to management and to the DPO that the company has complete control over the PII located on its devices.