Do you need to work with your database compromising your data? Worried about exposing sensitive information stored by your company, and not comply with GDPR?
GDPR & Compliance Audit
The GDPR regulation has forced companies to increase security measures to ensure the protection of sensitive information of European citizens. Amongst its main changes, these stand out:
– Expressing consent, right of access, modification, deletion and export of personal data by citizens
– The protection of data from the start and by default, transparent processing, periodic control and notifications both – to those affected and to the Supervisory Authority – by your organization.
“Sanctions for infringing the fundamental right to the protection of citizens’ personal data may amount to 20 million euros or 4% of the annual turnover of companies and institutions.”
We assume that you have already taken measures for all your infrastructure in production (although according to the latest study by the consulting firm Capgemini – with data from June 2019 – only 21% of Spanish companies still do not comply with GDPR!), but what happens to sensitive data when they are in a development and/or testing environments? The regulations apply the same way because they aim to ensure the security of the information of European citizens.
How to mitigate risks in our database under development or in production by obfuscating data
Articles 33 and 34 of the GDPR state that if our data is anonymized or encrypted and a security breach occurs, we will not be obliged to notify those affected or the Supervisory Authority, since it is unintelligible to third parties and such security breach does not constitute a risk to the rights and freedom of our clients.
Through a process of obfuscation in your database, you will be complying with the current regulations and protecting personal data from your customers, employees and suppliers.
What is database obfuscation?
An obfuscation process is based on a set of rules to mask certain information depending on what type it is.
DatabaseObfuscator is a tool for SQL Server developed by SolidQ that, taking advantage of the capabilities of the SQL Server engine, randomizes all the sensitive information in your database as fast as your hardware (cloud or on-premise) allows it to be.
Based on rules according to the type of sensitive information stored
Completely configurable dictionaries to randomize the data.
Modular obfuscation and multithreaded configuration
It is possible to duplicate a subset of the database for Development environments
It does not compromise the performance of your SQL Server
Ensuring the intelligibility of sensitive information and complying with the GDPR
How does DatabaseObsfuscator work?
Deployment and configuration.