Druva helps address
Gain visibility into where sensitive data resides and take action when needed
Right to be Forgotten
Discover and delete unstructured data from both primary and secondary storage
Secure by Design
Privacy-focused data protection with multiple certifications
Data Protection & Visibility Designed with Compliance in Mind
- Gain comprehensive and secure backup, recovery and archival across servers, endpoints and cloud applications
- Minimize risks with full data visibility, access and compliance monitoring across data sources
- Easily search, collect, preserve, archive or delete data to support legal and GDPR compliance needs
The GDPR Deadline Has Passed: What Should You Do?
GDPR Provisions Now in Effect
Security By Design
Organizations are expected to fully assess and then implement measures to ensure a level of security which is tailored to the risk of holding and processing personal data.
The data subject’s consent must be a freely given, informed, specific, and unambiguous indication of the data subject’s wishes. Explicit consent is required at the point of processing of sensitive data.
Data Breach Notification
Controllers must notify the supervisory authority of a personal data breach in 72 hours or depending on severity without “undue delay.”
Right to Object Processing
Data subjects have the right to object to processing unless the controller can show compelling legitimate grounds for processing.
Right to be Forgotten
A.K.A. Right to Erasure. Data subjects have the right to request the controller to erase his/her personal data without undue delay.
Data Protection Officers
Processors and controllers must appoint a data protection officer to monitor personal data processing.
Data Visibility & Control for Compliance Alignment
GDPR Aligned Data Protection
- Security: Protect data in transit and at rest with industry standard AES-256 encryption
- Visibility: Know where your data lives across endpoints, mobile devices, servers, and cloud applications
- Retention: Retain and defensibly delete data to comply with GDPR’s “right to be forgotten”
- Governance: Complete monitoring, auditing and reporting for all user and administrative actions on data within the organization
- Erasure: Enforce the “right to be forgotten” by sanitizing data anywhere in the organization