Done Compliance to GDPR (General Data Protection Regulation)

Discussion in 'Feature Requests' started by iba-IT, Jun 22, 2017.

  1. iba-IT

    iba-IT New Member

    Joined:
    Mar 28, 2017
    Messages:
    3
    Likes Received:
    0
    i am currently working on documents to check if LiquidFilesis compliant to the new E.U.data protection rules for may 2018. On your website on the pages Tour > Compliance (https://www.liquidfiles.com/tour/compliance.html) some standards are listed, but there is no information about the new E.U.rules that will be enforced next year.


    I am sure that LiquidFiles is safe enough to pass those regulation "by design", but is there an official statement by the company? This could also help transforming many E.U.costumers to a "GDPR compliant" solution like yours!


    The following E.U. data protection changes are relevant for a data transfer solution like LiquidFiles:


    "Privacy by Design

    Privacy by design as a concept has existed for years now, but it is only just becoming part of a legal requirement with the GDPR. At it’s core, privacy by design calls for the inclusion of data protection from the onset of the designing of systems, rather than an addition.

    More specifically - 'The controller shall..implement appropriate technical and organisational measures..in an effective way.. in order to meet the requirements of this Regulation and protect the rights of data subjects'. Article 23 calls for controllers to hold and process only the data absolutely necessary for the completion of its duties (data minimisation), as well as limiting the access to personal data to those needing to act out the processing."


    The GDPR term "Data portability" in the regulation is required when you move data between platforms or service providers, and that data is sent with LiquidFiles, with all protection and authentication features enabled.


    I think this short document (attached below) by a lawyer describes the GDPR best: see page 8 there is privacy by design: Source: https://edri.org/files/GDPR-key-issues-explained.pdf


    last but not least, we all have some time:

    "Enforcement: 2018 - May - Following a 2 year post-adoption grace period, the GDPR will become fully enforceable throughout the European Union."


    Thanks for your Feedback!
     

    Attached Files:

  2. David

    David Administrator
    Staff Member

    Joined:
    Dec 1, 2015
    Messages:
    698
    Likes Received:
    15
    Hi

    Thanks. I also have heard something about this new requirements from Brusel.
    We will have a look on that specification you attached.
     
  3. PWin

    PWin New Member

    Joined:
    Jul 25, 2017
    Messages:
    1
    Likes Received:
    0
    Hi, we are also checking our software if they are compliant to the new E.U.data protection rules. So we are waiting for feedback from LiquidFiles.
    Please let us know when you have news on that topic.

    Best regards
     
  4. Johan

    Johan Administrator
    Staff Member

    Joined:
    Dec 1, 2015
    Messages:
    37
    Likes Received:
    1
    Yes, LiquidFiles will meet all of the technical requirements in this (and every other compliance requirement we've come across). And as with all forms of compliance requirements, most of them are about your organisations and your procedures.
    From a technical perspective LiquidFiles also does not exist in a vacuum in your site, everything needs to be audited including your network infrastructure, firewalls, storage servers, virtual server platforms.
    Please see: https://man.liquidfiles.com/security/compliance.html for more information.
     

Share This Page