Network visibility and assurance for GDPR compliance

The EU General Data Protection Regulation, or GDPR, came into force on May 25. With every organization with customers and suppliers in the European Union now accountable for the way in which they handle or process personal data, much work has been done to ensure compliance by the deadline. As a result, all levels of a business are now concentrated on meeting the requirements of the new regulation, throwing the issue of data protection into focus like never before.

When you consider how big and complex IT networks have become in recent times, however, it has become almost impossible to detect just when and how a security breach or network failure might occur. Unsurprisingly, network security and information assurance are crucial to GDPR compliance, with the regulation stating that measures must be put in place to mitigate the risk associated with assuring information integrity and availability in the face of threats such as malicious code or distributed denial of service (DDoS) attacks.

It is therefore essential that businesses worldwide have complete visibility of their IT networks, not only to protect their customers’ personal information (and thereby their own brand reputation), but also to assure uninterrupted service delivery and, of course, compliance with the new legislation.

In addition to calling for the “pseudonymisation and encryption” of the personal data they handle, Article 32 of the GDPR also states that companies must “ensure the ongoing confidentiality, integrity, availability and resilience of processing systems and services” and be able to “restore the availability and access to personal data in a timely manner in the event of a physical or technical incident”.

Leave a Reply

Your email address will not be published. Required fields are marked *