The EU general data protection regulation (GDPR) has been put in place with an enforcement date beginning on May 25th – which is now nearly a month behind us! Organisations need to understand the changing requirements of the GDPR and how these will impact processes, policies, training, technology and security around the data they gather and process.
Compliance and the IT teams must be proactive to ensure they will be compliant, which doesn’t just apply to all organisations based in the EU, but also to any company that process data of EU citizens.
Bomgar has outlined four areas where organizations can start to secure remote access in order to help meet these new requirements and ensure data privacy. In the previous blogs in this series, we talked about the first step of identifying the data you hold, and the second step of reviewing employee training. The third step that we’ll focus on this week is considering your supply chain. Check out the clip from our webinar:
Consider Your Supply Chain
Who else has access to your data in addition to your employees? This can include cloud providers, marketing agencies, and SaaS CRM, HR, and procurement applications. If you are working with third-party vendors, contractors, suppliers understanding what data they have access to, why they require that and how they're processing it is going to be key. You must ensure that they have the necessary policies and security measures in place so you are compliant if they store or process your data.