Is your cloud GDPR compliant? 25th May 2018, Friday is nothing less scary for many as Friday the 13 th. Well, at least for those who are struggling to meet the compliance requirements of GDPR. It was revealed in the RSA Conference 2018 that 97 percent of worldwide IT professionals are using some type of cloud service. It further revealed that more than 80% organizations store sensitive data on public cloud. Right from customer information, information about IPs, network pass cards, personal staff data and more – all of it is available on the cloud. Organizations trust their cloud service providers and are unlikely to decrease their cloud investment in the years to come. Malware and other security concerns continue to mar the adoption of cloud but if a cloud service provider follows some of industry’s best practices, it is unlikely that they will have a dire situation as far as cloud security is concerned.
https://cdn.pixabay.com/photo/2018/02/11/23/45/cloud-3147119_960_720.png
If cloud service providers follow DevOps and DevSecOps can help reduce the data breaches and improve code quality. Automation is also known to reduce the exploits and vulnerabilities. With a single platform to manage multiple cloud services can help reduce the complexity of managing security. It looks like that just encryption and authentication are not enough to control data breaches. These are just basic security practices that are inadequate to protect workloads. As we are already aware that EU has taken a huge step to enforce data protection. The General Data Protection Agreement (GDPR) is EU’s move in the direction. On 25th May 2018, GDPR tenet will become effective and will give the right to an individual to protect his/her data.