GDPR – Community users - Act Now!
As organisations prepare for the new European Union (EU) General Data Protection Regulation (GDPR) by considering changes in processes, people, and technical controls, it is important they consider how Oracle’s MySQL Enterprise Edition can help to accelerate adoption of GDPR’s assessment, preventive, and detect controls.
The European Union (EU) introduced its data protection standard 20 years ago through the Data Protection Directive 95/46/EC. Because a Directive allows Member States a certain margin of maneuverability when implementing it into national law, Europe ended up with a patchwork of different privacy laws. In addition, increasing security breaches, rapid technological developments, and globalization over the last 20 years have brought new challenges for the protection of personal data. In an effort to address this situation, the EU developed the General Data Protection Regulation (GDPR). Fines for non-compliance are set at €20m or 4% of annual turnover and will come into force in May 2018.
There has never been a greater need to increase security, monitor applications/databases and be seen to be making an effort to protect personal data.
MySQL Enterprise Edition has a number of key security components to assist in the protection of personal identifiable information - also known as sensitive data. These include:
· MySQL Enterprise Authentication
· MySQL Transparent Data Encryption
MySQL has been developing innovative data security products for several years to help address attacks from different threat vectors. Organisations worldwide can accelerate their response to the GDPR requirements by leveraging MySQL Enterprise Security for assessment, preventive, and detect controls with minimal overhead, high degree of transparency, and low deployment complexity. Additionally MySQL Enterprise Security can fulfil other security requirements related to other regulations or security risks not specifically addressed in the scope of GDPR, such as the new Cyber Security initiative known as the Network and Infrastructure Directive.
It is critical to start planning how you will respond to the GDPR requirement. By using MySQL Enterprise Edition, or moving to the MySQL Oracle Cloud Managed Service (OCMS), organisations can start implementing the controls in the fastest way to accelerate their response to a data breach and also for achieving strong security for their sensitive Personal Identifiable Information (PII) and business data (IP).
Anyone left using MySQL Community Editions will be exposed to GDPR compliance. It is therefore in everyone’s interest that customers are aware of the risk they face without having the appropriate MySQL Security barriers, audit and monitoring in place for all MySQL instances.
For more information, please contact your local MySQL office or Oracle partners
Author: Archie Dhaliwal, Oracle MySQL, UK & Nordics Channel & Alliances Manager