The General Data Protection Regulation (GDPR) will become a reality for ALL organisations processing the personal data of European Union (EU) citizens on 25th May, 2018. The GDPR, which is a Regulation instead of a Directive, includes fines for data breaches of up to 4% of global turnover or €20M (whichever is higher), mandatory breach notification requirements and a 'right to be forgotten,' amongst other new clauses. Particularly notable is that the Regulation discusses both encryption and pseudonymisation, areas in which Thales has key technical strengths. Thales e-Security’s GDPR Healthcheck Service can help organizations determine whether they are ready for the GDPR and have the right resources in place.
As a data security company, Thales has significant experience implementing solutions designed to secure sensitive data. As a technique for protecting privacy, encryption is mentioned specifically in the GDPR. Our data encryption products and services are trusted by the largest financial, government, retail and other organisations to protect their most critical data.
We also have significant knowledge of the legal and regulatory aspects of data protection, with a wealth of experience in risk assessment, compliance and audit. We understand that data security encompasses not just technology, but also policy, process and procedure.
- Technical recommendations and guidance provided on how to rectify any discovered issues
- Independent, third-party technical assessment of your GDPR readiness
- Detailed analysis conducted by data protection professionals