General Data Protection Regulation (GDPR)

Availability for the Always-On Enterprise

Re: General Data Protection Regulation (GDPR)

Veeam Logoby CarlMcDade » Tue May 09, 2017 3:10 pm

Very interesting thread, looking forward to hearing the outcome of this has i too have heard both sides of the story

Cheers
mail@carlmcdade.com
http://twitter.com/CarlMcDade
http://www.carlmcdade.com
CarlMcDade
Service Provider
 
Posts: 60
Liked: 20 times
Joined: Mon Jul 08, 2013 1:47 pm
Location: Leeds, UK
Full Name: Carl McDade

Re: General Data Protection Regulation (GDPR)

Veeam Logoby Mike Resseler » Tue May 09, 2017 5:37 pm 1 person likes this post

We are still investigating and a lot of research is being done from our side. I hope to have a definitive statement soon. But one thing is already very clear:

There is no certification and certified GDPR software does not exist. Software can assist a company in becoming compliant (it can deliver reports/ data to prove certain areas in the legislation). In our case, Veeam ONE can already deliver quite some information that your DPO (Data Protection Officer) can use.

More to come after a couple more meetings with different parties :-)
Mike Resseler
Veeam Software
 
Posts: 3672
Liked: 402 times
Joined: Fri Feb 08, 2013 3:08 pm
Location: Belgium, the land of the fries, the beer, the chocolate and the diamonds...
Full Name: Mike Resseler

Re: General Data Protection Regulation (GDPR)

Veeam Logoby CarlMcDade » Wed May 10, 2017 9:35 am

Thanks Mike!
mail@carlmcdade.com
http://twitter.com/CarlMcDade
http://www.carlmcdade.com
CarlMcDade
Service Provider
 
Posts: 60
Liked: 20 times
Joined: Mon Jul 08, 2013 1:47 pm
Location: Leeds, UK
Full Name: Carl McDade

Re: General Data Protection Regulation (GDPR)

Veeam Logoby JLundgren » Sun Oct 08, 2017 8:20 pm

Hello,

Do you have any updated news concerning this topic ?

When listening to lawyers i Sweden, they state that GDPR also includes backup/archive data.
However, no individual can claim the removal of specific information in backed up data files, as long as the reason why the information was stored in the first place, still exist.

This question also interests me when comparing O365 backup solutions.
For instance, Skykick backup storing mailboxes, OneDrive and Sharepoint in Azure with, as I understand it, limitations concerning customer or SP control of the backed up data.

How far have you come in your investigations ?

Regards,

JohnnyL
JLundgren
Service Provider
 
Posts: 42
Liked: 1 time
Joined: Fri Nov 13, 2015 10:00 am
Full Name: Johnny Lundgren

Re: General Data Protection Regulation (GDPR)

Veeam Logoby Mike Resseler » Mon Oct 09, 2017 5:44 am

Hi Johhny,

The statement around the possibility of removing data from backup/ archive will probably remain open until after the first (major) lawsuit. Some lawyers say it needs to get removed, others say absolutely not as long as... (and you stated that yourself).

For O365, I believe the same applies. A user can ask to be removed (or needs to be removed) so at that moment, you delete the user from production but you can keep the user in backup/ archive for x amount of time (that x will apply to a retention time that applies to another law.) but you cannot "recover" the user back into production. So you need to export the data (to a PST for example) in case it is needed in a legal case
Mike Resseler
Veeam Software
 
Posts: 3672
Liked: 402 times
Joined: Fri Feb 08, 2013 3:08 pm
Location: Belgium, the land of the fries, the beer, the chocolate and the diamonds...
Full Name: Mike Resseler

[MERGED] Delete files and folders

Veeam Logoby AzetsDK » Mon Nov 20, 2017 11:27 am

I understand that in the current version, there are no easy ways to delete files and folders from backups.

Is this something you have in the roadmap? It seems essential to be able to be GDPR compliant by May 2018.

Rgds,

Lars
AzetsDK
Lurker
 
Posts: 1
Liked: never
Joined: Mon Nov 20, 2017 11:21 am
Full Name: Lars Munk-Bierre

Re: General Data Protection Regulation (GDPR)

Veeam Logoby foggy » Tue Nov 21, 2017 3:58 pm

Hi Lars, please review this thread for some information regarding your request.
foggy
Veeam Software
 
Posts: 15610
Liked: 1164 times
Joined: Mon Jul 11, 2011 10:22 am
Full Name: Alexander Fogelson

Re: General Data Protection Regulation (GDPR)

Veeam Logoby paul_parkes » Thu Dec 28, 2017 4:16 pm 1 person likes this post

GDPR - Article 17 gives the data subject the Right to erasure (‘right to be forgotten’).
Paragraph 1, sets out the right, along with the valid reasons to request removal. (They are limited)
Paragraph 2, states that where the data is in the public domain, the controller should take "reasonable" steps to inform other data controllers of the request.
Paragraph 3, states the reasons the request for removal can be turned down. (Paragraph 1 and 2 shall not apply)
    Section (b) states "for compliance with a legal obligation ..."
    Section (e) states "for the establishment, exercise or defence of legal claims".
The biggest impact of the GDPR is that "You should know your data and your processes" and "You should keep the data safe"

GDPR requires you to have a valid reason for keeping and processing data.
If you don't have a valid reason to keep and process data, why are you?
paul_parkes
Lurker
 
Posts: 2
Liked: 3 times
Joined: Fri May 11, 2012 10:54 am
Full Name: Paul Parkes

Re: General Data Protection Regulation (GDPR)

Veeam Logoby Mike Resseler » Tue Jan 02, 2018 6:16 am

Paul,
Absolutely correct. The right to be forgotten is not absolute. And even in the case that it is a valid request, it still doesn't mean you need to delete it from your backups. Besides GDPR there is still other laws depending on country, vertical... And after x amount of time, let your backups retire or get deleted automatically. I think I am going to steal your one-line by the way... Your last line is spot-on! ;-)
Mike Resseler
Veeam Software
 
Posts: 3672
Liked: 402 times
Joined: Fri Feb 08, 2013 3:08 pm
Location: Belgium, the land of the fries, the beer, the chocolate and the diamonds...
Full Name: Mike Resseler

Previous

Return to Veeam Backup & Replication



Who is online

Users browsing this forum: Gallus23, Google [Bot], kubimike, sefornes and 1 guest