We all know that information systems should be designed and built with security and privacy requirements in mind. Fact is though, they rarely are.
But now, as the General Data Protection Regulation (GDPR) takes effect on May 25, 2018, your organization is required to clearly demonstrate adequate handling and protection of personal data. That means ensuring that the right privacy controls are built into both current and new systems.
Failure to comply with this legislation leaves you wide open to hefty fines, data leaks, business discontinuity and reputational damage.
So, how can you gain control over personal data protection toward GDPR compliance? In this guide, Marcel de Keizer, Senior Consultant at SIG, discusses 9 guidelines to build privacy into your IT and ensure data security, including:
- Making data handling traceable
- Applying strong and proper authorization
- Enforcing a security baseline
Use this guide to build privacy into your IT cost- effectively and minimise the probability and impact of data breaches. And move your organization closer to GDPR compliance.