Technical (protection) measures, means, technologies, rules and resources are mentioned multiple times throughout the GDPR text. The Regulation does not, however, specify any security technology implementation as obligatory (a few methods are suggested as optional solutions for the specific usage). Choice and evaluation of adequacy is the sole responsibility of the data controller and processor. The range of possible technical mechanisms and safeguards for processing personal data depends primarily on the existing business processes and … More
This post was originally published on https://www.helpnetsecurity.com/.