The Datamax Thinking Blog

Educating, collaborating, and sparking ideas for maximizing the technology that matters.

Diagnosing Your Data: Is Your Tech Stack Compliant with GDPR?


This legislation is a game changer for how applicable organizations process, retain and store customer data. 

On May 25, the European Union’s General Data Protection Regulation (GDPR) was officially enforced, representing a watershed moment for consumer data protection and privacy moving forward.

This legislation, designed to better unify and protect data privacy for European Union citizens, applies to those within EU-member countries, so US-based companies may not think that this overseas legislation is relevant to their everyday business.  These companies should think again: The GDPR could be very relevant to you and the way you currently collect and store data.

Questions your organization should ask itself:

  • Does your organization have a web presence, and do you specifically market products over the web?
  • Are there financial transactions from your website involving entities within the member countries of the EU?
  • Do you collect personally identifiable information (PII), aka personal data, for marketing purposes from individuals within the EU?

If so, you have some research to do and possible action to take in order to prevent potentially hefty fines. This legislation is a game changer for how organizations process, retain and store customer data. Datamax, alongside its strategic data back-up, recovery, and business continuity partner Datto have specific tools and solutions to help support GDPR compliance.

Four areas in which Datto can help support GDPR Compliance:

1. Data Integrity and Business Continuity

An important part of GDPR compliance is the ability to ensure ongoing confidentiality, integrity, and availability of processing systems and services. It is also critical to be able to restore the availability and access to personal data in a timely manner in the event of a physical or technical incident.

Datto Continuity and SaaS Protection 2.0 deliver these services by giving you the ability to restore data quickly, in the way you need, for the length of time that you need to do it.

2. Data Retention

Under the GDPR, it is important to determine how long you would like to retain your data. Datto provides a number of options to tailor local and cloud data retention schedules. These options are set by default in certain plans and manually in others.

With Datto’s proprietary Inverse Chain Technology, you also have the ability to delete any snapshot both locally and in the cloud. Deleting any snapshot or group of snapshots will not affect your other backups and thus gives you the ability to keep an efficient set of backup data.

3. Data Storage

Under the GDPR, it is important to know where data is stored. Datto Continuity is a hybrid cloud solution designed to store backups of protected machines; one backup copy is stored where you have your servers, and another backup copy is stored in Datto Cloud.

Datto SaaS Protection 2.0 is a cloud-to-cloud solution, designed to store a copy of SaaS application data in the Datto Cloud.

Datto Continuity and Datto SaaS Protection 2.0 offer cloud storage in different geographic locations, including in Europe. A conversation with your MSP prior to implementation about geographic data storage location may be appropriate. This location can be changed later based on your needs.

You can also check where your cloud data is stored or request to move your cloud data with both Datto Continuity and Datto SaaS Protection 2.0. 

4. Data Encryption

Under the GDPR, keeping your data secure is essential. Datto Siris offers local data encryption as an option for added security on top of what Datto already securely transmits and stores in cloud data centers.

With Datto SaaS Protection 2.0, data is transmitted from cloud locations like Office 365 and G Suite in an encrypted form to the Datto Cloud and is stored on secure servers.

Are you confident with how well your company is protecting the confidential client information you store? Are your systems securely protecting vital, business-critical data? Not sure? Let’s talk!


Source: Datto

Topics: Network Management Managed Services Security Data Back-Up Managed Services Provider