Presenters:
GDPR: How to Stop Suffering and Start Benefiting
Russell McDermottSystems [email protected]
Jeff MelnickSystems [email protected]
Type your question
here
Click “Send”
Housekeeping
• All attendees are on mute
• Ask your questions!
• Questions will be answered during the session or at the Q&A at the end
• You will receive a copy of slides and webinar recording in the follow-up email
• Duration: Up to 60 minutes
• We hope you enjoy!
Agenda
The main provisions of the GDPR
The main challenges of GDPR to U.S. companies
How GDPR compliance can be beneficial to your
organization
How Netwrix Auditor 9.5 can help you achieve GDPR
compliance
GDPR Timeline
25 Jan 2012 EUROPEAN COMMISSION proposed a new General Data Protection Regulation
12 Mar 2014 EUROPEAN PARLIAMENT adopted a first reading of the GDPR
15 Jun 2015 COUNCIL OF THE EU agreed to a general approach on the GDPR
Jul to Dec 2015 NEGOTIATIONS between the EU Parliament, Council, and Commission
15 Dec 2015 INFORMAL AGREEMENT OF THE GDPR compromise text
Jan 2016 GDPR COMPROMISE TEXT IS TRANSLATEDinto 24 official EU languages
14 Apr 2016 EUROPEAN PARLIAMENT VOTES to adopt the EU General Data Protection Regulation
4 May 2016 THE FINAL TEXT OF GDPR IS PUBLISHED in the Official Journal of the European Union
24 May 2016 GDPR ENTERS INTO FORCE. A two-year transition period starts before the GDPR applies.
25 May 2018 GDPR IS APPLICABLE
What is the GDPR anyway?
The EU General Data Protection Regulation (GDPR) will take effect on
The GDPR seeks to provide unified and clear rules on stronger data protection, give individuals more control of their personal information processed by
companies, and ease law enforcement.
May 25, 2018
Main Provisions of the GDPR
Personal Data
Data subject’s consent
Data Processors and Controllers
Data Protection Officer
One-Stop Shop
Penalties
Data Subject Rights
Right of access
Right to rectification
Right to be forgotten
Right to data portability
Right to object
Data Subject Rights
The main challenges for U.S. companies
1. All U.S. companies should meet the requirements of the
compliance, even that do not have physical operations in EU
2. Strict definition of Data Subject consent
3. Data Subjects Control Over Personal Data
4. New data breach notification requirements
5. Extensive Recordkeeping to Enable Proof of Compliance
6. Steep Penalties for Non-Compliance
Benefits of the GDPR
Improved Business Reputation
! Immediately after revealing a data breach, companies
experience an average stock price decline of 5 percent
Greater Data Security
! 918 data breaches in the first half of 2017, 801 of which
affected U.S. organizations
Higher Customer Trust Level
! 91% of consumers expect companies they work with to be
completely transparent about how their data is being used
Who: A visibility platform for user behavior analysis and risk mitigation = insider threats
What: Enables control over changes, configurations, and access
• Focus on regulatory compliance
• Investigate threat patterns before a data breach occurs
How: Provide security analytics
• Detect anomalies in user behavior (who, what, when, where)
• Provide actionable data
• Reduce log event noise
Netwrix Auditor
Netwrix Auditor Applications
Netwrix Auditor for Active Directory
Netwrix Auditor for Windows File Servers
Netwrix Auditor for Oracle Database
Netwrix Auditor for Azure AD
Netwrix Auditor for EMC
Netwrix Auditor for SQL Server
Netwrix Auditor for Exchange
Netwrix Auditor for NetApp
Netwrix Auditor for Windows Server
Netwrix Auditor for Office 365
Netwrix Auditor for SharePoint
Netwrix Auditor for VMware
Netwrix Auditor Benefits
Relieves IT departments of manual
crawling through weeks of log data
to get the information about who
changed what, when and where
and who has access to what.
Detect Data Security Threats – On Premises
and in the Cloud
Pass Compliance Audits with Less Effort and
Expense
Increase the Productivity of Security and Operations Teams
Bridges the visibility gap by
delivering security analytics about
critical changes, state of
configurations and data access in
hybrid cloud IT environments and
enables investigation of suspicious
user behavior.
Provides the evidence required to
prove that your organization’s IT
security program adheres to PCI
DSS, HIPAA, HITECH, SOX,
FISMA/NIST800-53, COBIT, ISO/IEC
27001 and other standards.
Netwrix Auditor for GDPR Compliance
Demonstration
Netwrix Auditor
Netwrix Customers
GA
Financial
Healthcare & Pharmaceutical
Federal, State, Local, Government
Industrial/Technology/Other
Industry Awards and Recognition
All awards: www.netwrix.com/awards
Free Trial – setup in your own test environment:
On-premises: netwrix.com/auditor
Virtual: netwrix.com/virtual_appliances
Cloud: netwrix.com/cloud_opportunities
Test Drive: run a virtual POС in a Netwrix-hosted test lab netwrix.com/auditing_it_infrastructure_testdrive
Live Demo: product tour with Netwrix expert netwrix.com/one-to-one
Contact Sales to obtain more information netwrix.com/contactsales
Next Steps
Webinars: join our upcoming webinars and watch the recorded sessions
o netwrix.com/upcoming_webinarso netwrix.com/recorded_webinars
Read more about GDPR in Netwrix Blog: https://blog.netwrix.com/2018/02/06/what-is-the-general-data-
protection-regulation-gdpr-10-frequently-asked-questions/
Thank You!
Jeff MelnickSystems Engineer
Russell McDermottSystems Engineer