GDPR-compliant solution for encrypting and storing personal data
By encrypting data on an individual basis, DataSafe not only protects customers’ personal data from external attacks, but also from the risk of mass data losses due to opportunistic actions from staff members within an organisation.
The challenge
Mandated by the General Data Protection Regulation (GDPR), the security of personal data is not to be taken lightly.
Indeed, the loss of sensitive data – either through hacking, natural disasters or theft – can have serious consequences for an organisation and potentially lead to putting it out of business. In line with EU legislation, organisations are fined up to €100m or 5% of their global sales revenues, whichever is higher.
Every company continues to face the challenge of protecting their data, yet data losses can occur through:
- Failures to implement correct business logic in software
- Actions of a system or database administrator who has unrestricted access to personal identifiable information (PII) stored in an organisation’s database
- Data backups of the company that are purloined by administrators
The solution
Our DataSafe is a GDPR-compliant solution for encrypting and storing personal data at the application level.
By encrypting data on an individual basis, DataSafe not only protects customers’ personal data from external attacks, but also from the risk of mass data losses due to opportunistic actions from staff members within an organisation. Each user’s personal data is encrypted with an individual key, as a result, their data can only be processed when the user is logged into the system.
DataSafe puts an end to mass data losses, especially from systems where a lot of PII is collected and processed.
The benefits
- Data can only be decrypted when the user is present
- Compliance with the GDPR provision of technical measures for the protection of data and privacy
- Encryption of personal identifiable information – using CMS standard file format (Cryptographic Message Syntax)
- Very modular and easy to customise
- Data is encrypted when transferred between devices – data is protected on multiple devices
- Simple to use, easy to integrate into other applications
- Data can be encrypted and stored – even when the user is not present