Would you like to detect cyber attacks before it’s too late and react correctly? Safeguard your organization against viruses, Trojans and ransomware to prevent the loss of data? Transmit documents in a way that protects them from being viewed by unauthorized third parties? Design and set up the archiving and access to personal data in a compliant way? Offer consumers simple, intuitive opt-out/opt-in possibilities?
Retarus’ services will not only be compliant with GDPR by May 25th, 2018, but are today already helping companies and authorities to implement the European Union’s General Data Protection Regulation (GDPR) requirements.
GDPR DEADLINE May 25th, 2018
Good to know
The processing of data at Retarus is always carried out in accordance with the locally applicable data protection regulations and moreover fulfills sector-specific requirements such HIPAA or PCI-DSS. Retarus’ data centers are operated with the highest level of security and are subject to a strict system of internal controls. In addition, Retarus offers its customers the opportunity to contractually specify the region where their data is processed and the company is open to being audited at any time.
Retarus Cloud Services: Internationally compliant.
✓ Federal Data Protection Act
✓ EU Directive 95/46/EC
✓ ISAE 3402
Down from 25 to 1: National data protection regulations now harmonized
Previously data protection in Europe was the business of each individual country – apart from the EU “Directive 95/46/EC”, which defined minimum requirements. With the General Data Protection Regulation (GDPR), the EU member states have now agreed on a uniform regulation for the protection of data.
Stricter provisions, heftier fines
The GDPR bolsters the basic right of all EU citizens to data protection and privacy. Accordingly, the requirements set for the handling of personal data by companies are formidable, and the penalties for violating them are substantial. Violations of the GDPR are sanctioned with fines of up to 20 million Euros or 4 percent of the company’s global annual turnover – depending on which amount is higher.
The market of the company is decisive, not its registered HQ
The GDPR applies to every company which administrates, gathers, stores, deletes, uses or processes personal data – no matter whether it’s a firm of craftsmen, an international corporation or an authority, and irrespective of whether they are based in Berlin, Istanbul or Shanghai. The applicability of GDPR is not determined based on the registered headquarters of the company, but rather the markets in which it operates.