The recent introduction of the General Data Protection Regulation (GDPR) has done a lot to tackle issues surrounding business’ exploitation of personal data and has led to calls by some tech leaders for a similar legislative approach in the U.S. at a Federal Government level. Just last month, “The California Consumer Privacy Act of 2018” was created, promising similar rights for the State’s 40 million citizens as Europeans received with GDPR.
The hastily approved Act, which is due to come into effect on Jan. 1, 2020, affords citizens the right to see what information of theirs is being collected by businesses and to request that data be deleted. They will also be able to find out whether their information ...
Earlier this month, we spent three great days during VeeamON 2018 that made me feel inspired, energized and motivated. I had productive conversations with customers, partners and analysts and I’m looking forward to innovating together.
Throughout our history, Veeam has grown from being THE solution for the modern highly-virtualized data center to the #1 Data Protection for Multi-Cloud Enterprise. Data represents today what oil represented for the industrial revolution and it’s growing at a faster rate than even before, becoming indispensable for our digital lives. Consequently, the solutions to keep data available need an upgrade.
At VeeamON, I was on the stage and I was delighted to talk about our new vision and messaging of being the ...
Throughout our journey, we learned about the breadth, scope and location of our data, we started to manage it, and we validated that it was protected and secured. However, completing these tasks still did not ensure compliance.
This only encompassed the first 3 principles of the 5 lessons which we learned.Know your dataManage the dataProtect the dataDocumentation and complianceContinuous improvement
This journey brought us to the final two principles: Documentation and Compliance, as well as Continuous Improvement.
Lesson 4 and 5 can be brought together. Everything you do today for documentation, and that is automated, can also be used for continuous improvement.
First, it is important that each process in your environment is documented. The data itself might be classified and secure, ...
After the general overview and the delving into the first and second principles in our GDPR journey, it is time to look at the third principle: Protect the data. As a reminder, below are Veeam’s 5 lessons or 5 key principles in the GDPR journey:Know your dataManage the dataProtect the dataDocumentation and complianceContinuous improvement
There are many Information Security articles about protecting your data. Implementing and ensuring data protection heavily relies on tools and technology. While tools and technology are essential in protecting data, it is not sufficient. Protecting your data comes from article 25:
Let’s continue our journey that we started in the previous two blogs. In the first post, we gave a general overview of Veeam’s journey to GDPR compliance and shared our 5 lessons learned. In the second post, we went deeper in the first of those five principles.Know your dataManage the dataProtect the dataDocumentation and complianceContinuous improvement
Let’s look closer at the second principle: Manage the data.
If you finished the tasks from the first principle and identified the personally identifiable information (PII) you own and where it resides, you can now start the process of establishing rules and processes to access and use that PII data.
The key questions here are:Who has access to ...
In my previous post we explained how Veeam, as a Swiss-based company with many European customers, needs to be compliant with GDPR just like many other companies that handle data for European citizens.
I also promised that we would share our learnings to help you in your compliance process. Our lessons learned can be brought back to 5 key principles:Know your dataManage the dataProtect the dataDocumentation and complianceContinuous improvement
Today, I want to go deeper on the first principle: Know your data.
The first essential step that you need to take is to determine if your organization has personally identifiable information (PII) of an EU resident. I have had several conversations with organizations which believed that they did ...
May 25, 2018 is approaching quickly. This is when the grace period for the GDPR (General Data Protection Regulation) is over and an organization may be penalized for non-compliance. Just like any company that does business with EU customers, Veeam needs to be compliant with this regulation, especially considering we are a global, Swiss-headquartered company.
Over the next weeks, we will guide you through the steps and effort that Veeam has been taking and continues to take, to ensure compliance. This is and will be an ongoing process that does not stop on the 25th of May. Our expectation is that these activities will continue as part of our ongoing business model. These efforts have included legal consultation, regulatory consultants and ...