General Data Protection Regulation (GDPR)
The next 25th May 2018 being the live-date for Data Protection Directive(DPD) changeover with the General Data Protection Regulation(GDPR), assures users authority and privacy over their data. Many organizations envisage this as a big hurdle that could hurt their business. But is it actually one?
What is GDPR?
This regulation was aimed to protect and empower every resident of the European Union thereby making them the new data owner. Article 5 of the renewed GDPR regulation states “Personal data shall be processed lawfully, fairly and in a transparent manner in the relation to the data subject(‘lawfulness, fairness and transparency’)”. Now, this is a challenge! Security to sensitive data will no longer be a decision made in a rush but a matter of concern right from the initial stages of development making it a top priority.
The act will eventually reshape the way organizations across the globe look at data privacy. 73% of data protection experts believe this will be the most significant change over the past 20 years that will revolutionize data protection ending with positive customer impact.
Need of the hour
The year 1984 saw the first act of data protection being passed. The rise in advent of technology should eventually lead to an upliftment in the way data security is perceived. The digital era we live in is seeing the significance of data growing each second which eventually has paved way for the amount of threats to soar higher. Approximately 61 records are breached every second. And now, that’s something serious.
Well, now that should explain how organizations are vulnerable to these menacing complexities. What’s more pathetic is, its leaves the customers on a low opinion of the brand since their private data is at stake. This is where the GDPR can empower the customer rights and combat this hurdle. By the rule of thumb, personal data should be retained as long as it is being retained for its original intent and got to be deleted when it is not needed.
Here’s the catch- failing to adhere to the GDPR compliance will lead to paying hefty fines up to 20 million Euros or 4% of annual turnover. Thus it’s high time organizations revive their ethical responsibilities. We have understood that it’s not just fines at stake, but the brand reputation, jobs and the very business itself.
How does Vembu comply with the GDPR?
The laying of this GDPR is crucial and inevitable norm. But what is to be known is, there is not one software that would uphold all the principles of it. We at Vembu are looking towards certify data centers and assure customers their rights. Vembu being a 15 year old firm has worked extensively on being compliant with local laws of various countries. One of the most important fact about security compliances are the stringent measures to be followed by organizations to protect the critical customer data. Vembu uses patented and in-house file system to store the data in chunk files thus making it unreadable unless it is restored by the administrator as per process. Vembu also uses federally acclaimed AES 256-bit algorithm to encrypt the data while transfer and at-rest while data is compressed, deduped to make suit the storage needs of a business.
The Vembu BDR Suite in itself has already garnered attention for its extended service of delivering backup and recovery reports to even individual virtual machine. This assures them the authority to monitor their data continuously. The multilayered verification to the data they configure for backup turns out to be an added advantage to them. As a part of auditory compliance, organizations are also expected to store and present the data up to a certain period of time. The retention policies vary from organization and Vembu provides the option to do so through two types of retention: Basic and Advanced retention. The basic retention will keep the daily merged recovery points as per the number of days you have configured for the retention. You can have up to 99 daily merged recovery points using the basic retention. If you want more number of recovery points, you can select advanced retention. The advanced retention has three kinds of merge options within it and you can choose any combination of this three as per your wish namely daily merge, weekly merge and monthly merge respectively thus empowering organizations to store data as much as 10 years with any no. of retentions.
We further will be holding up talks with our Service Providers and partners across the globe keeping in mind the global stock exchange. All geared up with responsibility, we are ready to implement our road map on this much needed GDPR.