Get Ready for the GDPR with HPE
June 05, 2018 • Staff writer • Blog Post
IN THIS ARTICLE
- New regulatory mandates like the GDPR are both a wake-up call and an opportunity to review your data protection processes and activities
- HPE products and solutions are designed to help customers comply with GDPR
HPE solutions are built to assist customers in aligning with their security obligations under the GDPR
Have you ever found that your personal data was exposed due to a data breach? Unfortunately, the chances are high because there have been far too many recent examples. In these situations, it's paramount companies inform their customers immediately, before the stolen data can be used by cyber-criminals. Many privacy laws may also require companies to notify regulators of breaches too. The new EU General Data Protection Regulation introduces mandatory breach notification requirements across Europe within short timeframes from the breach being discovered.
Meet the new sherriff in town: The GDPR
A lot of folks have had May 25, 2018 circled on their calendars for a few years. That's because on May 25, European Union's General Data Protection Regulation (GDPR) came into force, bringing the most significant change to EU data protection law for 25 years. The legislation impacts controllers the organizations that determine the purposes and means of the processing of personal data, and processors - organizations that process personal data on behalf of a controller. The law introduces very high monetary penalties for non-compliance with maximum fines of up to 20 million or 4% of global annual turnover, whichever is higher. It's hard to determine what the fines would have been for past data breaches. However, looking at past transgression examples, companies may feel the biggest impact on reputation, which although harder to quantify than a fine could far outstrip any penalty handed to them by a regulator.
Don't let the name fool you
Even though this is legislation from the European Union, it reaches beyond the geographical boundaries of the EU and impacts companies operating inside (wherever they process the data) and outside the EU if they target sales to people in the EU or monitor their behavior in the EU.
HPE can assist you with the GDPR
Compliance with GDPR can serve as a catalyst to take critical and potentially overdue steps to increase security and ensure compliance in several areas.
HPE solutions have advanced features built into the products that will assist customers to align with their security obligations under the GDPR. We closely monitor our supply chain to make sure components pass anti-counterfeiting checks and arrive securely at our manufacturing floor.
HPE Storage helps modernize your infrastructure by offering advanced flash platforms with built-in flash-optimized data protection and security. This includes built in end-to-end security features and functionalities focused on authorization, authentication, availability, encryption, integrity, and auditability to help meet compliance and regulatory requirements. For more information on HPE's built-in storage features, please checkout this blog from Rashmi Malik, HPE 3PAR product management, titled GDPR is here. Are you ready?
Need help? HPE Pointnext Consulting can assist
New regulatory mandates like the GDPR are both a wake-up call and an opportunity to review your data protection processes and activities to ensure that they're delivering the best value for the money, and perhaps even uncover new ways to improve customer service and drive more value from data that you control or process. HPE Pointnext can provide the right data management expertise to help you understand, manage and reduce the business and security risks around information management. Together with our extensive partner ecosystem, we can help you at every stage of the journey, from initial risk assessment, to roadmap design, to implementation and ongoing continuous improvement.