General Data Protection Regulation (GDPR)
GDPR was introduced by various European governing bodies to strengthen data protection for all individuals within the EU.
GDPR was introduced by various European governing bodies to strengthen data protection for all individuals within the EU.
The General Data Protection Regulation (GDPR) was introduced by various European governing bodies to strengthen data protection for all individuals within the EU, and to simplify the regulatory compliance for businesses and organizations.
The regulation addresses data privacy and the processing of personal data of citizens within the EU, regardless of the location of the organization managing the data. The definition of “personal data” has also expanded to mean any information relating to an identifiable person who can be directly or indirectly identified in particular by reference to an identifier. This means that it will more than likely apply to your business or organization!
Organizations in breach of GDPR can be fined up to 4% of their annual global turnover or €20m - whichever is greater - and it also works on a tiered scale, where organizations who don’t have their records in order, for example, will still be fined 2% of annual turnover.
It’s also important to know that both data processors and controllers are held under this regulation meaning “clouds” are not exempt.
Cloud Conformity is very powerful for maintaining your GDPR compliance. It checks all of your resources 24 hours a day, doesn’t use sampling and you can be immediately notified when a resource becomes non-compliant.
Cloud Conformity goes one step further to help to maintain your GDPR compliance by providing auto-remediation for nearly 60 rules.
The Cloud Conformity engine monitors your compliance with GDPR using the related rules shown below and provides a report for quick, automated assessment.
To view the status of your environments against these rules in Cloud Conformity simply: