Data Portability: Are You GDPR Compliant?

Data moving from computer to server

Posted on Thursday, August 2, 2018

Just three months since it became law, the General Data Protection Regulation (GDPR) has had a seismic impact on the way that businesses collect, store and process personal data belonging to EU citizens. Faced by potentially enormous fines (€20m or 4% of global turnover, whichever is greater), it is little surprise how quickly global businesses have embraced the legislation. 

Issues like enhanced security and “right to be forgotten” requests have been dominating the CTO’s compliance efforts. But there is another factor that needs to be addressed: data portability.

On-demand data exports

The data portability article is intended to prevent EU citizens from being tied to a platform. Previously, it was almost impossible to export information from cloud services like Facebook, Google or Apple’s iCloud.

Now, users may request a complete copy of the data held by any data controlling organisation – and that request must be fulfilled as quickly as reasonably possible.

A complex technical challenge

The data audits you completed to ensure GDPR compliance will have shown that personal information is typically spread across several systems and data stores, which means that providing the necessary portable exports may not be straightforward at all.

As you continue to develop your systems, spare a thought for the lesser-known aspects of GDPR compliance and update your policies and procedures accordingly. You must also ensure that these policies address the export of data from legacy systems and cold storage archives, too.

And don’t forget that these rights apply to EU citizens globally; the fact that your business and data centers are based outside the European Union is no defence in the event of a complaint to the EU Commission. You must ensure that you can fulfil any data portability request you receive.

Need to update those cold storage platforms? Contact CDS today to find out how we can help.

Download article as a PDF - Data Portability: Are You GDPR Compliant?

More Articles

Computer and server cabinet

Why CDS Clients Never Worry About Storage Array Spares

CDS clients enjoy guaranteed access to every part for every storage system included on their maintenance contract.

Servers waving in the heat

Data Center Lessons From The UK Heatwave

“Extreme” heat in Great Britain is causing a number of issues for CTOs – here’s what you need to know.