General Data Protection Regulation (GDPR) Compliance


GDPR applies to any business operating in the European Union (EU), no matter where the organization is located. All sensitive, personal information relating to EU subjects must be stored securely and protected.

European Union

Countdown to EU GDPR: Are You Compliant?

When the EU General Data Protection Regulation (GDPR) goes into effect on May 25, 2018 organizations will have just 72 hours to report detected breaches to the relevant authorities. Failure to do so could result in a significant fine up to €20 million or 4 percent of total annual sales, whichever is greater. However, identifying which records have been compromised in such a short timeframe could prove impossible without the right tools.

How to Build an EU GDPR Compliance Strategy

An Observer GigaStor appliance, part of the Observer Performance Management Platform, positioned inside the network near the firewall, captures, encrypts, and stores all your network traffic, just like a closed-circuit television (CCTV) camera captures everything that passes by it. This solution provides the critical post-event platform needed for your comprehensive GDPR compliance strategy.

The secured wire data is then available to reconstruct and review security issues quickly in context of all network traffic occurring before, during and after the event. Network and security teams can collaboratively verify attack details and compromised data in accordance with General Data Protection Regulation.

BLOG: Dispelling Three Myths About EU GDPR Compliance 

While many organizations use the Observer Platform primarily for network and application troubleshooting, nearly half of customers also use the platform for post-incident network security forensics investigations. This functionality is critical for GDPR compliance in three ways:

  1. Pre-incident validation that the organization has taken sufficient steps to ensure its ability to investigate and report attack details to authorities within 72 hours, as well as the ability to verify successful remediation.
  2. Pre-incident discovery and mapping of network infrastructure involved in supporting applications and services collecting, analyzing and storing personally identifiable information.
  3. Post-incident investigation with the Observer Platform and its captured data can prove that no information was compromised and help organizations identify or provide documentation of what data was affected, how access was achieved, and if intellectual property was compromised.
  • Why Network Packet Capture Aids GDPR Compliance

    With GigaStor from VIAVI Solutions, all the network traffic is recorded without dropping, slicing, or manipulating the wire data in any way. Even in high-speed, heavy-transaction environments like trading companies, retail and banking, all data is captured, encrypted, and stored for later review. In the event of an incident, all the packets are available to replay and reconstruct the breach, ensuring that your organization remains in GDPR compliance.

  • Real-Life GDPR Examples

    If contractors based outside the EU, managing servers housing an EU customer database inappropriately accessed that database, the GDPR would apply. Compliance would be facilitated if the organization’s network was equipped with a network performance monitoring solution like the Observer Platform.

    Outside phishing attacks can be easily reconstructed and analyzed to confirm the type of attack and provide post-event forensics data on whether any assets where affected that would need to be reported according to the General Data Protection Regulation.

  • Start Planning Today to be GDPR Compliant

    The forthcoming GDPR legislation will drive significant changes in the way organizations process personal data. If data privacy isn’t built into collection, storage and security processes by design, enterprises risk huge financial and reputation consequences.

    While many of the requirements of the GDPR will require lengthy analysis and planning, the Observer Platform can be implemented immediately. As you implement strategies to become compliant with the GDPR, an effective network performance monitoring solution with robust security forensics will do much more than simply cover your assets.

    Start the process to become compliant with the General Data Protection Regulation today by downloading this helpful white paper and learn more about how the Observer Platform can provide your organization with key capabilities for GDPR compliance.