Making Our Business and Solution GDPR-Compliant

What Our GDPR Compliance Program Means to You 

Compliance, risk management, and data protection are core to our mission of keeping our customers secure.  

That’s why we’ve undertaken a comprehensive program to meet the requirements of the General Data Protection Regulation (GDPR). 

What is GDPR?

The GDPR is a data privacy and security regulation designed to give individuals control over their personal data. 

The European Union (EU) enacted the GDPR  law in 2018 to create protections around the handling, collection of, and access to personal data of individuals within the EU. 

The GDPR applies to organizations that: 

• Process personal data as part of the activities of one of their branches established within the EU, regardless of where the data is processed, or 

• Are established outside the EU and are offering goods/services (paid for or free) or are monitoring the behavior of individuals in the EU   

You can read more about the regulations, the governing principles, and the rights of data subjects further at General Data Protection Regulation (GDPR) Compliance Guidelines. 

How We Meet the Requirements of the GDPR

To adhere to the GDPR, we needed to implement a range of measures, including:  

• Keep records of data processing activities 

• Have a procedure in place to notify the supervisory authority and affected individuals if a data breach occurs (within strict timelines), and 

• Meet several data privacy requirements, including adding GDPR-compliant terms to our customer contracts and our Privacy Policy 

We’ve worked diligently to meet these requirements by: 

• Uplifting documentation 

• Assessing risk 

• Improving data handling controls 

• Revising our Privacy Policy 

• Implementing mandatory GDPR training, and 

• Supporting Data Subject Access Requests (DSAR) 
  

GDPR-Relevant Controls within the Airlock Digital Solution  

GDPR adherence extends from company processes and policies to strong data protection controls within the Airlock Digital solution itself. (Read how Airlock Digital addresses GDPR requirements).  Examples include: 

• Encryption of data at rest and in transit, using strong, approved cryptographic algorithms 

• Robust access controls, and 

• Logging and monitoring  

As with many compliance programs, meeting  GDPR  regulation is an ongoing activity.  We are committed to monitoring any new developments, responding to our customer requirements, and building further trust with you, our customers. 

Please feel free to review our Global Data Protection Agreement, available from the Airlock Digital Trust Center: Trust Center - Airlock Digital 

If you have further questions about how we meet  GDPR  or how we handle data, please contact our Data Protection Officer (DPO) here: dpo@airlockdigital.com 

Our  GDPR  compliance program means your data is handled appropriately whether you are one of our EU customers, one of our global customers who works with the EU, or whether you are considering becoming one of our customers in future. 

GDPR.eu 

General Data Protection Regulation (GDPR) Compliance Guidelines 

The EU General Data Protection Regulation went into effect on May 25, 2018, replacing the Data Protection Directive 95/46/EC. Designed to increase data privacy for EU citizens, the regulation levies steep fines on organizations that don’t follow the law. 

security.airlockdigital.com 

Airlock Digital Trust Center 

Airlock Digital is a global leader in application control and allowlisting, trusted by organizations worldwide to protect against ransomware, malware and other cyber threats. Our Deny by Default solution enables customers to run only the applications and files they trust, with all others blocked from executing. This approach minimizes attack surfaces and helps organizations align their cybersecurity strategies with government frameworks and standards.