EnzoMC
Member
- Messages
- 1,999
been taking breaks on here from reading pages about this
so first point is a massive well done to all those that are ready for GDPR (May 2018) and for those who are just starting maybe this thread will help us....
for those who don't know about GDPR and have a business that holds personal data - I would highly suggest you looking into this as GDPR is a data protection law and has very high fines of £20m or 4% of turn-over which ever is higher
personal data I understand also now includes public IP addresses and also business email addresses which was a surprise, one subject 'right to erasure' is one that has come up with no solution to backups - how do you remove personal data from months of backups ? I'm not sure this will be enforced but currently understand as long as you have a procedure you maybe OK
I started about a month ago and I know we have a few business / IT guys on here and want to see if you have any recommendations on security partners or guide lines for GDPR - I know their is no magic tick list as the gov. GDPR document depends on interpretation and I know this is GDPR subject is massive. I'm pushing for this to be a business project but at the moment its with me so any guide lines would help
info:
https://www.gov.uk/government/uploads/system/uploads/attachment_data/file/644822/GDPR_document.pdf
https://www.eugdpr.org/
https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/
Matt - hope this is OK to post, please delete if not
All - I ask very kindly please treat this thread as a helpful resource
so first point is a massive well done to all those that are ready for GDPR (May 2018) and for those who are just starting maybe this thread will help us....
for those who don't know about GDPR and have a business that holds personal data - I would highly suggest you looking into this as GDPR is a data protection law and has very high fines of £20m or 4% of turn-over which ever is higher
personal data I understand also now includes public IP addresses and also business email addresses which was a surprise, one subject 'right to erasure' is one that has come up with no solution to backups - how do you remove personal data from months of backups ? I'm not sure this will be enforced but currently understand as long as you have a procedure you maybe OK
I started about a month ago and I know we have a few business / IT guys on here and want to see if you have any recommendations on security partners or guide lines for GDPR - I know their is no magic tick list as the gov. GDPR document depends on interpretation and I know this is GDPR subject is massive. I'm pushing for this to be a business project but at the moment its with me so any guide lines would help
info:
https://www.gov.uk/government/uploads/system/uploads/attachment_data/file/644822/GDPR_document.pdf
https://www.eugdpr.org/
https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/
Matt - hope this is OK to post, please delete if not
All - I ask very kindly please treat this thread as a helpful resource