What Our GDPR Compliance Program Means to You
Compliance, risk management, and data protection are core to our mission of keeping our customers secure.
That’s why we’ve undertaken a comprehensive program to meet the requirements of the General Data Protection Regulation (GDPR).
What is GDPR?
The GDPR is a data privacy and security regulation designed to give individuals control over their personal data.
The European Union (EU) enacted the GDPR law in 2018 to create protections around the handling, collection of, and access to personal data of individuals within the EU.
The GDPR applies to organizations that:
- Process personal data as part of the activities of one of their branches established within the EU, regardless of where the data is processed, or
- Are established outside the EU and are offering goods/services (paid for or free) or are monitoring the behavior of individuals in the EU
You can read more about the regulations, the governing principles, and the rights of data subjects further at General Data Protection Regulation (GDPR) Compliance Guidelines.
How We Meet the Requirements of the GDPR
To adhere to the GDPR, we needed to implement a range of measures, including:
- Keep records of data processing activities
- Have a procedure in place to notify the supervisory authority and affected individuals if a data breach occurs (within strict timelines), and
- Meet several data privacy requirements, including adding GDPR-compliant terms to our customer contracts and our Privacy Policy
We’ve worked diligently to meet these requirements by:
- Uplifting documentation
- Assessing risk
- Improving data handling controls
- Revising our Privacy Policy
- Implementing mandatory GDPR training, and
- Supporting Data Subject Access Requests (DSAR)
GDPR-Relevant Controls within the Airlock Digital Solution
GDPR adherence extends from company processes and policies to strong data protection controls within the Airlock Digital solution itself. (Read how Airlock Digital addresses GDPR requirements). Examples include:
- Encryption of data at rest and in transit, using strong, approved cryptographic algorithms
- Robust access controls, and
- Logging and monitoring
As with many compliance programs, meeting GDPR regulation is an ongoing activity. We are committed to monitoring any new developments, responding to our customer requirements, and building further trust with you, our customers.
Please feel free to review our Global Data Protection Agreement, available from the Airlock Digital Trust Center: Trust Center - Airlock Digital
If you have further questions about how we meet GDPR or how we handle data, please contact our Data Protection Officer (DPO) here: dpo@airlockdigital.com
Our GDPR compliance program means your data is handled appropriately whether you are one of our EU customers, one of our global customers who works with the EU, or whether you are considering becoming one of our customers in future.
GDPR.eu
General Data Protection Regulation (GDPR) Compliance Guidelines
The EU General Data Protection Regulation went into effect on May 25, 2018, replacing the Data Protection Directive 95/46/EC. Designed to increase data privacy for EU citizens, the regulation levies steep fines on organizations that don’t follow the law.
security.airlockdigital.com
Airlock Digital is a global leader in application control and allowlisting, trusted by organizations worldwide to protect against ransomware, malware and other cyber threats. Our Deny by Default solution enables customers to run only the applications and files they trust, with all others blocked from executing. This approach minimizes attack surfaces and helps organizations align their cybersecurity strategies with government frameworks and standards.