CHAPTER 4: SECURITY OF PROCESSING
Security is one of the most important safeguards in preventing harm to individuals, as reflected in Article 32 of the GDPR, which mandates “appropriate technical and organisational measures to ensure a level of security appropriate to the risk”.
Specifically, it requires organisations to identify and mitigate “risks that are presented by [data] processing, in particular from accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to personal data transmitted, stored or otherwise processed”. Such ‘appropriate’ measures may include:
• Encrypting personal data;
• Ensuring your processing systems and service are secure and resilient;
• Being able to restore availability and access ...
Get Data Protection and the Cloud - Are you really managing the risks? now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.