General Data Protection Regulation (GDPR)

Availability for the Always-On Enterprise

Re: General Data Protection Regulation (GDPR)

Veeam Logoby CarlMcDade » Tue May 09, 2017 3:10 pm

Very interesting thread, looking forward to hearing the outcome of this has i too have heard both sides of the story

Cheers
mail@carlmcdade.com
http://twitter.com/CarlMcDade
http://www.carlmcdade.com
CarlMcDade
Service Provider
 
Posts: 58
Liked: 20 times
Joined: Mon Jul 08, 2013 1:47 pm
Location: Leeds, UK
Full Name: Carl McDade

Re: General Data Protection Regulation (GDPR)

Veeam Logoby Mike Resseler » Tue May 09, 2017 5:37 pm 1 person likes this post

We are still investigating and a lot of research is being done from our side. I hope to have a definitive statement soon. But one thing is already very clear:

There is no certification and certified GDPR software does not exist. Software can assist a company in becoming compliant (it can deliver reports/ data to prove certain areas in the legislation). In our case, Veeam ONE can already deliver quite some information that your DPO (Data Protection Officer) can use.

More to come after a couple more meetings with different parties :-)
Mike Resseler
Veeam Software
 
Posts: 3340
Liked: 379 times
Joined: Fri Feb 08, 2013 3:08 pm
Location: Belgium, the land of the fries, the beer, the chocolate and the diamonds...
Full Name: Mike Resseler

Re: General Data Protection Regulation (GDPR)

Veeam Logoby CarlMcDade » Wed May 10, 2017 9:35 am

Thanks Mike!
mail@carlmcdade.com
http://twitter.com/CarlMcDade
http://www.carlmcdade.com
CarlMcDade
Service Provider
 
Posts: 58
Liked: 20 times
Joined: Mon Jul 08, 2013 1:47 pm
Location: Leeds, UK
Full Name: Carl McDade

Re: General Data Protection Regulation (GDPR)

Veeam Logoby JLundgren » Sun Oct 08, 2017 8:20 pm

Hello,

Do you have any updated news concerning this topic ?

When listening to lawyers i Sweden, they state that GDPR also includes backup/archive data.
However, no individual can claim the removal of specific information in backed up data files, as long as the reason why the information was stored in the first place, still exist.

This question also interests me when comparing O365 backup solutions.
For instance, Skykick backup storing mailboxes, OneDrive and Sharepoint in Azure with, as I understand it, limitations concerning customer or SP control of the backed up data.

How far have you come in your investigations ?

Regards,

JohnnyL
JLundgren
Service Provider
 
Posts: 32
Liked: 1 time
Joined: Fri Nov 13, 2015 10:00 am
Full Name: Johnny Lundgren

Re: General Data Protection Regulation (GDPR)

Veeam Logoby Mike Resseler » Mon Oct 09, 2017 5:44 am

Hi Johhny,

The statement around the possibility of removing data from backup/ archive will probably remain open until after the first (major) lawsuit. Some lawyers say it needs to get removed, others say absolutely not as long as... (and you stated that yourself).

For O365, I believe the same applies. A user can ask to be removed (or needs to be removed) so at that moment, you delete the user from production but you can keep the user in backup/ archive for x amount of time (that x will apply to a retention time that applies to another law.) but you cannot "recover" the user back into production. So you need to export the data (to a PST for example) in case it is needed in a legal case
Mike Resseler
Veeam Software
 
Posts: 3340
Liked: 379 times
Joined: Fri Feb 08, 2013 3:08 pm
Location: Belgium, the land of the fries, the beer, the chocolate and the diamonds...
Full Name: Mike Resseler

Previous

Return to Veeam Backup & Replication



Who is online

Users browsing this forum: benj00, Bing [Bot], BradI, Google [Bot], jhoughes, souperstar and 92 guests