The European GDPR is now in force

Make sure you are sufficiently prepared – in terms of security – for:

  • Least Privilege: Does each user have the permissions he or she actually needs?
  • Distinction: Are approvals and assignments of permissions strictly separated?
  • Reporting: Are you aware of who currently has access to personal data?
  • Transparency: Can you trace back why a particular user was given a certain access right?

GDPR 2016/679

The goal of the European General Data Protection Regulation is to give citizens of the European Union more control over the use of their personal data. In aid of this, companies that process this data will be subject to clear, unified regulations. The basic regulation applies to all companies that process data pertaining to citizens of the European Union. There are serious consequences for not complying with the GDPR: fines of 4% of the global profit or up to 20 million Euros.

Use tenfold to comply (and prove compliance) with the GDPR’s requirements

tenfold ensures that personal data subject to the GDPR are protected against unlawful use by appropriate access rights. Reduce these rights down to the extent necessary for business operations. Do not risk data theft or misuse of personal data through incorrectly assigned access rights.

Responsible data handling

The responsible handling of personal data entrusted to the company includes, among other things, the fact that the assignment of access rights is subject to clear and transparent processes (see Article 32 – Security of processing).

tenfold uses regulation-compliant authorization procedures to ensure that only those persons responsible for processing data are able to determine who receives access to said data. Do not rely on manual processes, such as e-mails or tickets, as these are subject to media interruptions, which means that correct processing cannot be guaranteed. Avoid the frustration of knowing that, though processes were indeed carried out formally and correctly, the associated documentation is missing or cannot be found.

Longstanding Transparency

You can now guarantee that the effective access rights of your users are always reported, not only for the current point in time, but for long after the relevant data no longer exists or the employees have left the company. By storing all relevant information in an SQL database in an audit-proof manner, you will always be on the safe side.

Executive summary

  • The European Union’s GDPR has been in force since May 25th, 2018, and has replaced all previous existing regulations, such as the BDSG (German Federal Data Protection Act)
  • It includes clear, strict regulations for the protection of personal data.
  • Non-compliance leads to serious fines.
  • tenfold will support you in complying with the regulation and also to prove compliance.
  • Do not waste time – act now!

Find out more at:

Access rights set correctly?