Enterprise Mobility and Security for GDPR – Podcast by GCI’s Andrew Wild – Product Manager, Cloud
This short Podcast gives you a simplified overview of Microsoft’s Enterprise Mobility and Security Service known as EM+S.
This podcast focuses on how Enterprise Mobility and Security will help organisations address the risks (and potentially severe financial penalties) with the new General Data Protection Regulations (GDPR) due to come into force on 25 May 2018.
In a nutshell, GDPR is designed to give back control to individuals of their personal data. From May 2018, any organisation storing, sharing and using personal customer data MUST adhere to this NEW legislation.
To add perspective, the financial penalty that Tesco Bank would have faced following their hacking in Nov 2016 would have been £1.9 billion under the NEW GDPR legislation!
With so much data held in the Cloud… and moving through Enterprise, Partner and Customer networks, it is now much harder to implement systems to identify, protect and erase personal information.
What is EM+S?
Enterprise Mobility & Security (EM+S) helps classify and label documents & data at the time of creation. Following this, encryption, authentication and user rights can then be applied.
The key point here is that this protection is ‘PERSISTENT’ and travels with the data so that it is identifiable – and protected at all times – regardless of where it is stored… or with whom it is shared.
An additional key benefit is that users can track activity on shared files – and revoke access – if they encounter unexpected activities. It also provides ‘rich logs’ for compliance and regulatory purposes.
What are the benefits?
- Data can be classified & labelled automatically, or manually
- Provides an assurance that data & documents are fully protected
- Standard ‘sensitivity labels’ and ‘rules’ can be customised
- Protection – including encryption – can be applied after classification
- Documents can be tracked to show who has opened them…and when!
- Users can choose to revoke access to data or documents at any time
So, why should you consider it?
The introduction of new GDPR legislation in May 2018. While that might seem a long time away, in ‘technology implementation timescales’ it’s barely a heartbeat away!
Some real life examples of how EM+S can help with GDPR compliance.
Imagine that one of your field sales staff uses his own device to send a quote to a customer… and that the quote contains sensitive financial information. Information that might, for example, be REALLY useful to a competitor. If the customer does not order, the sales person can simply revoke access to the document to protect their pricing model.
Imagine that a business suspects that sensitive corporate data is being leaked to a competitor. EM+S policies can block a user from copying text from a corporate email into a personal email (or forwarding it on) to prevent such compromises.
Imagine that an order process requires a credit card number to be logged in a Microsoft Word Form or Spreadsheet. EM+S automatically recognises that the document contains a credit card number and applies policies so that it cannot be opened – or sent – outside the organisation… or saved on a local drive.
Find out more from us
We’ll be running technology workshops, webinars and exhibiting at a number of shows this year. If you’d like to find out more about these activities, please just give us a call or view or events page.