Patrick will explain the importance of having robust processes in place for regularly testing, assessing and evaluating the effectiveness of not only technical but also organisational measures for ensuring security. He will also demonstrate how the channel can use GDPR as an opportunity to help customers review and strengthen their cyber security practices.
The General Data Protection Regulation (GDPR) was adopted by the European Union to strengthen and unify data protection for individuals within the European Union. A study by One Identity last year showed only 4% of organisations felt knowledgeable about the regulation. GDPR is designed to considerably increase individuals’ rights with regard to personal data. In particular, it outlines special new provisions and compliance requirements for “sensitive personal data”, which includes genetic data, biometric data, health data and data relating to sexual orientation, race, political opinions and so on.
GDPR comes into force in May 2018 and failure to comply could result in fines amounting to 4% of annual turnover, or ˆ20m, whichever is greater.
“Sensitive personal data – such as medical records – is now more valuable for cyber criminals than financial information like credit card details,” said Patrick Hunter, sales engineering director, EMEA at One Identity. “Though regulations can often seem like a barrier or yet another hoop to jump through, GDPR should be viewed as an ideal opportunity to address a critical area where attacks are increasing. Channel partners who make themselves knowledgeable and offer customers a trusted resource for advice stand to gain a lot from helping them get it right.”
