GDPR Audit

Do you need to work with your database compromising your data? Worried about exposing sensitive information stored by your company, and not comply with GDPR?

GDPR & Compliance Audit

The GDPR regulation has forced companies to increase security measures to ensure the protection of sensitive information of European citizens. Amongst its main changes, these stand out:

– Expressing consent, right of access, modification, deletion and export of personal data by citizens

– The protection of data from the start and by default, transparent processing, periodic control and notifications both – to those affected and to the Supervisory Authority – by your organization.

“Sanctions for infringing the fundamental right to the protection of citizens’ personal data may amount to 20 million euros or 4% of the annual turnover of companies and institutions.”

www.eugdpr.org

We assume that you have already taken measures for all your infrastructure in production (although according to the latest study by the consulting firm Capgemini – with data from June 2019 – only 21% of Spanish companies still do not comply with GDPR!), but what happens to sensitive data when they are in a development and/or testing environments? The regulations apply the same way because they aim to ensure the security of the information of European citizens.

 

How to mitigate risks in our database under development or in production by obfuscating data

Articles 33 and 34 of the GDPR state that if our data is anonymized or encrypted and a security breach occurs, we will not be obliged to notify those affected or the Supervisory Authority, since it is unintelligible to third parties and such security breach does not constitute a risk to the rights and freedom of our clients.

Through a process of obfuscation in your database, you will be complying with the current regulations and protecting personal data from your customers, employees and suppliers.

gdpr compliance UK

What is database obfuscation?

An obfuscation process is based on a set of rules to mask certain information depending on what type it is.

DatabaseObfuscator is a tool for SQL Server developed by SolidQ that, taking advantage of the capabilities of the SQL Server engine, randomizes all the sensitive information in your database as fast as your hardware (cloud or on-premise) allows it to be.

Based on rules according to the type of sensitive information stored

n

Completely configurable dictionaries to randomize the data.

​Modular obfuscation and multithreaded configuration

It is possible to duplicate a subset of the database for Development environments

It does not compromise the performance of your SQL Server

Ensuring the intelligibility of sensitive information and complying with the GDPR

How does DatabaseObsfuscator work?

Step 1. 

Obfuscation requirements.

We meet with your company’s IT or DPO manager to identify the type of data you need to obfuscate.

Step 2.

Deployment and configuration.

We deploy the tool in an SQL Server environment. During the process, an analysis is executed identifying the columns that require obfuscation.

Step 3.  

Checks.

Revise with you the analysis and configuration of dictionaries, to check a correct masking of sensitive data.

Step 4.

Duplication (optional)

We duplicate a database subset to work in development and test environments.

Step 5.

Iterations

According to the defined frequency, the process is repeated with the necessary configuration revisions.

Ensure GDPR compliance and mitigate potential risks of personal data exposure from 150€/month(*)

(*) Initial configuration not included. Fill in the form to know all the details and our pricing plans.

Contact Our Data Platform Experts

We guarantee the performance of your systems ensuring the compliance and security of sensitive information.

Shall we talk?

  • By submitting this information, you acknowledge that you have read the Privacy Policy and that you consent to our data processing in accordance with this Statement.