gdpr european general data protection regulation (gdpr) · 2016-11-14 · european general data...
TRANSCRIPT
![Page 1: GDPR European General Data Protection Regulation (GDPR) · 2016-11-14 · European General Data Protection Regulation (GDPR) Webcast mit Sophos – 26.02.2016 2 • „European Directive“](https://reader033.vdocuments.net/reader033/viewer/2022041812/5e583e6cb9368b093e30b95a/html5/thumbnails/1.jpg)
GDPREuropeanGeneralDataProtection
Regulation(GDPR)
![Page 2: GDPR European General Data Protection Regulation (GDPR) · 2016-11-14 · European General Data Protection Regulation (GDPR) Webcast mit Sophos – 26.02.2016 2 • „European Directive“](https://reader033.vdocuments.net/reader033/viewer/2022041812/5e583e6cb9368b093e30b95a/html5/thumbnails/2.jpg)
EuropeanGeneralDataProtectionRegulation(GDPR)
WebcastmitSophos– 26.02.2016 2
• „EuropeanDirective“willreplaceall(28)nationaldatasecuritylaws• By2018• 2yearsofgraceperiod• Penaltiesmuchhigher– upto20MillionEUR
![Page 3: GDPR European General Data Protection Regulation (GDPR) · 2016-11-14 · European General Data Protection Regulation (GDPR) Webcast mit Sophos – 26.02.2016 2 • „European Directive“](https://reader033.vdocuments.net/reader033/viewer/2022041812/5e583e6cb9368b093e30b95a/html5/thumbnails/3.jpg)
GDPR– TheTimetoActisNow
• Thursday14April2016o EuropeanParliamentapprovesnewrulesfitforthedigitalera
NewProvisions
• Finesupto4%ofannualWWturnover• Arighttobeforgotten• Clearandaffirmativeconsenttotheprocessingof
privatedatabythepersonconcerned• Arighttotransferyourdatatoanotherservice
provider• Therighttoknowwhenyourdatahasbeenhacked• Ensuringthatprivacypoliciesareexplainedinclear
andunderstandablelanguage
Timeline
• Memberstateshave2yearstotransposetheprovisionsofthedirectiveintonationallaw.
• Theregulationwillenterintoforce20daysafteritspublicationintheEUOfficialJournal.
• DuetoUKandIreland’sspecialstatus,thedirective’sprovisionswillonlyapplyinthesecountriestoalimitedextent.
• Denmarkwillbeabletodecidewithin6monthsafterthefinaladoptionofthedirectivewhetheritwantstoimplementitinitsnationallaw.
![Page 4: GDPR European General Data Protection Regulation (GDPR) · 2016-11-14 · European General Data Protection Regulation (GDPR) Webcast mit Sophos – 26.02.2016 2 • „European Directive“](https://reader033.vdocuments.net/reader033/viewer/2022041812/5e583e6cb9368b093e30b95a/html5/thumbnails/4.jpg)
TechnicalControl
WebcastmitSophos– 26.02.2016 4
• Dutytousedataprotectionfriendlytechnologyo „Dataprotection by design“
• anddataprotectionfriendlyconfigutrationo „Dataprotectionbydefault“
• TheEUCommissioncandefinerequirementsforspecifictechnicalmeasures
• Itisexpectedthatdetailedsecuritystandardswillbedefinedinthemid-term
![Page 5: GDPR European General Data Protection Regulation (GDPR) · 2016-11-14 · European General Data Protection Regulation (GDPR) Webcast mit Sophos – 26.02.2016 2 • „European Directive“](https://reader033.vdocuments.net/reader033/viewer/2022041812/5e583e6cb9368b093e30b95a/html5/thumbnails/5.jpg)
Dutytocommunicatedatabreaches
5
• Shouldapersonaldatabreachoccur,thecompanyisrequiredtonotifythesupervisoryauthoritywithin72hoursafterhavingbecomeawareofthebreach.
Credit CardNumber
Name
Address Salary
Date of Birth
FinancialSituation
TelephoneNumber
IP AddressRFID Tags
Geo Tags
![Page 6: GDPR European General Data Protection Regulation (GDPR) · 2016-11-14 · European General Data Protection Regulation (GDPR) Webcast mit Sophos – 26.02.2016 2 • „European Directive“](https://reader033.vdocuments.net/reader033/viewer/2022041812/5e583e6cb9368b093e30b95a/html5/thumbnails/6.jpg)
Encryptionbecomespolitical
![Page 7: GDPR European General Data Protection Regulation (GDPR) · 2016-11-14 · European General Data Protection Regulation (GDPR) Webcast mit Sophos – 26.02.2016 2 • „European Directive“](https://reader033.vdocuments.net/reader033/viewer/2022041812/5e583e6cb9368b093e30b95a/html5/thumbnails/7.jpg)
“For many years, we have used encryption to protect our customers’ personal data because we believe it’s the only way to keep their information safe.”Tim Cook, CEO of Apple
![Page 8: GDPR European General Data Protection Regulation (GDPR) · 2016-11-14 · European General Data Protection Regulation (GDPR) Webcast mit Sophos – 26.02.2016 2 • „European Directive“](https://reader033.vdocuments.net/reader033/viewer/2022041812/5e583e6cb9368b093e30b95a/html5/thumbnails/8.jpg)
Mac/PCComputer
Phone
Tablet
DataisEverywhere
8
![Page 9: GDPR European General Data Protection Regulation (GDPR) · 2016-11-14 · European General Data Protection Regulation (GDPR) Webcast mit Sophos – 26.02.2016 2 • „European Directive“](https://reader033.vdocuments.net/reader033/viewer/2022041812/5e583e6cb9368b093e30b95a/html5/thumbnails/9.jpg)
Mac/PCComputer
HDD
TrueorFalse?FullDiskEncryptionisallyouneed?
9
![Page 10: GDPR European General Data Protection Regulation (GDPR) · 2016-11-14 · European General Data Protection Regulation (GDPR) Webcast mit Sophos – 26.02.2016 2 • „European Directive“](https://reader033.vdocuments.net/reader033/viewer/2022041812/5e583e6cb9368b093e30b95a/html5/thumbnails/10.jpg)
FileEncryption
Mac/PCComputer
Cloud-basedFileShare
Servers/SharedFolders
Phone
Tablet
10
![Page 11: GDPR European General Data Protection Regulation (GDPR) · 2016-11-14 · European General Data Protection Regulation (GDPR) Webcast mit Sophos – 26.02.2016 2 • „European Directive“](https://reader033.vdocuments.net/reader033/viewer/2022041812/5e583e6cb9368b093e30b95a/html5/thumbnails/11.jpg)
SynchronizedEncryption
EncryptIndividualFiles
11
![Page 12: GDPR European General Data Protection Regulation (GDPR) · 2016-11-14 · European General Data Protection Regulation (GDPR) Webcast mit Sophos – 26.02.2016 2 • „European Directive“](https://reader033.vdocuments.net/reader033/viewer/2022041812/5e583e6cb9368b093e30b95a/html5/thumbnails/12.jpg)
SynchronizedEncryption
EncryptIndividualFiles
BYDEFAULT
EVERYWHERE
ALWAYSON
12
![Page 13: GDPR European General Data Protection Regulation (GDPR) · 2016-11-14 · European General Data Protection Regulation (GDPR) Webcast mit Sophos – 26.02.2016 2 • „European Directive“](https://reader033.vdocuments.net/reader033/viewer/2022041812/5e583e6cb9368b093e30b95a/html5/thumbnails/13.jpg)
SecureContentCollaborationfortrustedusers
ContentstoredintheCloud
5
![Page 14: GDPR European General Data Protection Regulation (GDPR) · 2016-11-14 · European General Data Protection Regulation (GDPR) Webcast mit Sophos – 26.02.2016 2 • „European Directive“](https://reader033.vdocuments.net/reader033/viewer/2022041812/5e583e6cb9368b093e30b95a/html5/thumbnails/14.jpg)
SecureContentCollaborationfortrustedusers
Preventhackersfromaccessingdatastored
intheCloud
ContentsharedviaemailandfromtheCloud
ContentstoredintheCloud
5
![Page 15: GDPR European General Data Protection Regulation (GDPR) · 2016-11-14 · European General Data Protection Regulation (GDPR) Webcast mit Sophos – 26.02.2016 2 • „European Directive“](https://reader033.vdocuments.net/reader033/viewer/2022041812/5e583e6cb9368b093e30b95a/html5/thumbnails/15.jpg)
SecureContentCollaborationfortrustedusers
Contentdecryptedforinternaluser
Preventhackersfromaccessingdatastored
intheCloud
ContentsharedviaemailandfromtheCloud
ContentstoredintheCloud
5
![Page 16: GDPR European General Data Protection Regulation (GDPR) · 2016-11-14 · European General Data Protection Regulation (GDPR) Webcast mit Sophos – 26.02.2016 2 • „European Directive“](https://reader033.vdocuments.net/reader033/viewer/2022041812/5e583e6cb9368b093e30b95a/html5/thumbnails/16.jpg)
ProductDemo
![Page 17: GDPR European General Data Protection Regulation (GDPR) · 2016-11-14 · European General Data Protection Regulation (GDPR) Webcast mit Sophos – 26.02.2016 2 • „European Directive“](https://reader033.vdocuments.net/reader033/viewer/2022041812/5e583e6cb9368b093e30b95a/html5/thumbnails/17.jpg)
17
![Page 18: GDPR European General Data Protection Regulation (GDPR) · 2016-11-14 · European General Data Protection Regulation (GDPR) Webcast mit Sophos – 26.02.2016 2 • „European Directive“](https://reader033.vdocuments.net/reader033/viewer/2022041812/5e583e6cb9368b093e30b95a/html5/thumbnails/18.jpg)
18
![Page 19: GDPR European General Data Protection Regulation (GDPR) · 2016-11-14 · European General Data Protection Regulation (GDPR) Webcast mit Sophos – 26.02.2016 2 • „European Directive“](https://reader033.vdocuments.net/reader033/viewer/2022041812/5e583e6cb9368b093e30b95a/html5/thumbnails/19.jpg)
Whataboutexternalsharing?
19
![Page 20: GDPR European General Data Protection Regulation (GDPR) · 2016-11-14 · European General Data Protection Regulation (GDPR) Webcast mit Sophos – 26.02.2016 2 • „European Directive“](https://reader033.vdocuments.net/reader033/viewer/2022041812/5e583e6cb9368b093e30b95a/html5/thumbnails/20.jpg)
![Page 21: GDPR European General Data Protection Regulation (GDPR) · 2016-11-14 · European General Data Protection Regulation (GDPR) Webcast mit Sophos – 26.02.2016 2 • „European Directive“](https://reader033.vdocuments.net/reader033/viewer/2022041812/5e583e6cb9368b093e30b95a/html5/thumbnails/21.jpg)
21
![Page 22: GDPR European General Data Protection Regulation (GDPR) · 2016-11-14 · European General Data Protection Regulation (GDPR) Webcast mit Sophos – 26.02.2016 2 • „European Directive“](https://reader033.vdocuments.net/reader033/viewer/2022041812/5e583e6cb9368b093e30b95a/html5/thumbnails/22.jpg)
22
![Page 23: GDPR European General Data Protection Regulation (GDPR) · 2016-11-14 · European General Data Protection Regulation (GDPR) Webcast mit Sophos – 26.02.2016 2 • „European Directive“](https://reader033.vdocuments.net/reader033/viewer/2022041812/5e583e6cb9368b093e30b95a/html5/thumbnails/23.jpg)
Whatyoucandonow
23
• Usethetimelefttopreparecomplianceandstartnow• Analyseallprocesses• Documentsecuritymeasures• DataProtectionfriendlyuseoftechnologiesfromthestart
![Page 24: GDPR European General Data Protection Regulation (GDPR) · 2016-11-14 · European General Data Protection Regulation (GDPR) Webcast mit Sophos – 26.02.2016 2 • „European Directive“](https://reader033.vdocuments.net/reader033/viewer/2022041812/5e583e6cb9368b093e30b95a/html5/thumbnails/24.jpg)
24