How cloud IT can help you prepare for GDPR
By Cloud Direct • 03 May 2017
Don’t get caught with your pants down in an unnecessary data breach. Find out how cloud IT protects and secures your data, streamlining compliance for the new General Data Protection Regulations (GDPR) in May 2018.
Let’s start by looking at five key areas you can action today. And if you need a recap on what GDPR is, and the business and IT changes required, check out this blog GDPR countdown: 11 things you must do now.
Five things you can do today
Identify what personal data you have and where it resides.
Manage how personal data is used and accessed
Establish security controls to prevent, detect and respond to vulnerabilities
Action data requests and keep required documentation
Analyse data and systems, stay compliant and reduce risk
How cloud IT can help reduce risks and achieve GDPR compliance
Securing and managing personal data is key to complying with the requirements of GDPR, come May 2018. Microsoft’s Enterprise Mobility & Security solution is designed to secure personal data – no matter where it might travel: across users, devices or apps. This significantly helps you reduce risks and achieve compliance with the new GDPR.
A summary: what is Enterprise Mobility & Security?
Enterprise Mobility & Security uses identity-driven security technologies that help businesses discover, control and safeguard the personal data they hold within their organisation. It reveals potential blind spots and detects when data breaches occur.
Let’s break this down into more detail in areas that relate specifically to GDPR and data protection.
Manage data access
With Azure Active Directory (Azure AD), only authorised users can access your IT environments, data and applications. Tools such as Multi-Factor Authentication enable highly secure sign-in. While Azure AD Privileged Identity Management helps reduce risks associated with administrative access privileges by controlling, managing and reporting them.
Understand your cloud apps and users
Microsoft Cloud App Security can help you:
- discover all the cloud apps in your environment
- identify all users and usage
- get a risk score for each app
It then provides visibility, control and threat protection for the data stored in those cloud apps. You can set up policies and enforce them on Microsoft and other third party cloud applications. And if Cloud App Security discovers an anomaly, it will immediately send you an alert.
Protect your data
Microsoft Intune helps you protect data stored on personal computers and mobile devices. You can:
- encrypt devices
- selectively wipe data
- control which applications store and share personal data
Make your data identifiable
Microsoft Azure Information Protection helps ensure that your data is identifiable and secure – regardless of where it’ stored or how it’s shared. This is another key requirement of the GDPR. You can:
- classify, label and protect new or existing data
- share it securely with people within or outside of your organisation
- track usage
- revoke access remotely
- log and report on data distribution
- manage and control encryption keys
To find out more about how cloud IT can help your business, please go to Microsoft Enterprise Mobility and Security.
Share this post