GDPR
General Data Protection Regulation

WHAT IS GDPR AND WHO IS AFFECTED?

GDPR is the new data protection regulation from the EU, released in May 2016 with an implementation date of May 25, 2018. Organizations anywhere in the world that collect or process personal data on EU residents must comply with the new regulation, or they will face significant financial penalties.

MANDATORY STEPS YOU MUST TAKE TO PREPARE FOR THE GDPR:

Know what personal data means;
Know who controls or processes personal data;
Know where the personal data is stored (database repositories, systems, information carriers);
Appoint a Data Protection Officer (DPO);
Require owner's consent for processing personal data.;
Data monitoring – continuous monitoring and information storage. Who has accessed or made changes to the data and how? Information should be provided upon owner's request;
Personal data is a subject of regulation based on the owner’s place of residence, instead of the physical location of the data;
Right to be forgotten – cease data processing upon owner's request;

WHAT CAN HAPPEN IF YOU DO NOT COMPLY WITH THE REQUIRES?

Non-compliance can lead to significant financial penalties. The fines can reach up to €20 million or 4% of the total global annual turnover of the preceding financial year, whichever is higher.

HOW CAN MNEMONICA HELP YOUR COMPANY COMPLY WITH THE GDPR REQUIREMENTS?

Step 1

GAP Analysis

Mnemonica can prepare a gap analysis, providing an overview of the extent to which the organizational and technological practices of your company comply with the GDPR requirements. Our experts are on hand to help and guide you towards full compliance with the new regulations, while providing working technological solutions. It should be noted that unlike previous regulations, it is no longer sufficient to have implemented the required technology. It is more important for companies to be able to demonstrate that the personal data they are working with is well-protected.

Step 2

Strategy Recommendation

Based on a gap analysis, Mnemonica can prepare a customized strategy recommendation corresponding with the specific characteristics of your company.

Step 3

Training

Internal trainings take place in your company’s office. Participants will receive the learning materials in electronic format. The content is based on both Mnemonica’s practical experience in the field of data storage and protection, as well as on the widely recognized information security standard ISO 27001.

Step 4

Solutions and products

Data masking and anonymisation – Data Encryption, Data Anonymization, Tokenization, Data Scrambling
Data monitoring – Data Classification, Monitoring Data at Rest, Monitoring data in Motion, Network Packet Surveillance
Protection against external threats - DDoS, IPS/IDS, Next Generation Firewall, VPN and Remote Access data protection
Protection against environmental threats – Database/ Application Firewalling, SIEM, Data Loss Prevention, HardCopy/ Printing Service Data Protection

ABOUT MNEMONICA

Since 2009 Mnemonica's business is mainly focused on data protection and security. The company has successfully completed over 600 projects for over 100 clients since its founding. Relying on Mnemonica’s expertise, many of our clients and partners are preparing for the GDPR.

IN BRIEF:

What is personal data?
Why is protection of personal data needed?
When is the new regulation going to be implemented? How will that affect business?
What will the cost of non-compliance be?
What organizational and technological practices will the companies comply?