How does Windows 10 help support GDPR compliance?
I’m sure you have, at the very least, heard of the General Data Protection Regulation (GDPR). If you haven’t then I recommend you get up to speed, because this is the most significant change to data privacy and protection laws since the Data Protection Act. GDPR is a new privacy regulation that will be implemented throughout Europe and it’s coming in May 2018. It’s designed to mitigate the threat by cracking down on cyber security.
If you think this doesn’t apply to you then think again. The new regulation imposes new rules on organisations that offer goods and services to people in the European Union – so it’s a good chance this include you, regardless of whether or not you are in the EU.
Some of the key requirements of GDPR:
Personal Privacy:
Individuals have the right to access, erase, correct errors, object to processing or export their personal data.
Controls and notifications:
Organisations will need to protect personal data, notify authorities of any breaches, receive consent and keep records of any data processing.
Transparent policies:
Organisations must provide clear notice of data collection, outline processing purposes and define data retention and deletion policies.
IT and training:
Organisations will need to train employees, to audit and update policies, and in larger organisations employ a data protection officer.
A key requirement of GDPR is protecting personal data from data leakage no matter where it is sent, processed or stored, inside and outside of your organisation – from the device to the servers or to the cloud.
The penalties for non-compliance are severe. Organisations that fail to comply could face substantial fines of up to 4% of global annual turnover or €20 million (whichever is higher) as well as suffer reputational damage. Therefore, it’s clear GDPR needs to be high priority in your agenda to tackle for 2017/2018.
Considering the recent cyber-attacks the need for greater security has become even more apparent. Enhanced security measures need to begin now. With Windows 10 Enterprise you get the most secure version of Microsoft’s OS which can help you address key GDPR compliancy rules.
Windows 10 Enterprise offers a built-in security defence stack, controls and IT support delivered through the cloud:
Pre-Breach:
DEVICE PROTECTION
Protect your systems at the device level with UEFI and Secure Boot
THREAT RESISTANCE
Get better prepared against everyday threats with built-in features like Smart Screen, Windows Firewall, Microsoft Edge, Device Guard, Windows Defender
IDENTITY PROTECTION
Secure logins with Windows Hello and Credential Guard
INFORMATION PROTECTION
Protect sensitive data on your device and in the cloud with BitLocker, Windows Information Protection and Conditional Access
Post-Breach:
BREACH DETECTION INVESTIGATION AND RESPONSE
Detect, investigate and respond to advanced persistent threats with Windows Defender ATP
Take a look at the latest GDPR press release from industry analysts Gartner. Gartner predicts that by the end of 2018, more than 50% of companies affected by the GDPR will not be in full compliance with its requirements.
Make sure that you’re not in that that 50% come May 2018. Considering how much work is involved leading up to May 2018 when the regulation is enforced, we need to ensure we are prepared at all costs, or risk incurring the penalties at a vulnerable time when cyber security breaches are frequently making headline news.