Data Protection by Design - RDX® removable disk technology meets GDPR requirements

from Jürgen Schelbert, Produkt Marketing Manager, Overland-Tandberg

Do you still suffer from GDPR headache?

The European Union’s GDPR, with its eleven chapters of 99 articles, is intended to secure the protection of privacy and the processing of personal data but can be quite intimidating to review and understand. Many areas of data protection have not been newly regulated by the GDPR and many businesses are already following general data protection rules for many years. But they now must face the painful possibility of penalties and/or the constant fear of receiving formal warnings, not following the rules. The regulations have put small and medium-sized enterprises’ (SMEs) data management policies to the test.  

Companies must ensure that sensitive data cannot be accessed by unauthorized personnel. In addition, every action involving personal data must be logged and any data breaches must be communicated immediately.  Many SMEs ask:  What is stored, saved, and archived? Where as well as how long should data be retained?

Are you still struggling to meet these regulatory requirements? Do you find yourself diagnosed with the latest new malady ailing IT administrators, a “GDPR Headache”?

Some key GPDR policies to note:

  • Article 25 (1) of the GDPR requires companies and organizations to take “appropriate technical and organizational measures” (TOM), which were designed to protect privacy and guarantee data protection principles.
    • Our RDX technology with its rugged design of the removable RDX media allows off-site vaulting of your critical data to a secure place when not in use. In addition, RDX media provides a shelf life time of 10 years! The full backward and forward read/write compatibility ensures total data accessibility regardless of drive and media generations.
  • Next, Article 23 of GDPR speaks about limiting the access to personal data to only those supporting data processing, in that data needs to be secured against unauthorized access. In Article 32, paragraph 1 describes the security of personal data by using encryption. Finally, paragraph 3 in GDPR Article 34, also describes how data breaches must be communicated immediately, unless the data is encrypted.
    • Using RDX encryption, neither business nor personal user data stored on RDX can be accessed without knowing the encryption password, thus limiting its access!

Our RDX Encryption features are the pain relief to your GDPR headache!

We provide AES 256-bit software-based encryption with our RDX Cartridge Encryptor (“RCE”) software and hardware encryption through our RDX PowerEncrypt, currently available for the internal drives with SATA III interface. In both cases, the AES 256-bit encryption ensures data privacy and only allows authorized people to access the data.

And if you are concerned about password-hacking, the RDX PowerEncrypt feature makes it impossible to hack a password! As the AES 256-bit encryption allows 1.1*1077 combinations, it would take 3.31*1056 years to try all possible keys with the fastest supercomputer currently available. However, future computer speeds are increasing and password cracking is getting easier, to counter this, RDX PowerEncrypt allows just one try per second reducing all password cracking attempts to a slow 60 attempts per minute. RDX PowerEncrypt is so robust the software can even resist hacker parallel cracking techniques used to reduce cracking time as it makes it practically impossible to copy data. Zettabytes of storage would be needed and many years to finish that copy task.

RDX solutions are able to relieve your GDPR headache and are a great asset to your existing and new data management procedures and processes!

Share

 

Rate this

Send Feedback

Send Us Feedback

Questions, comments, suggestions? Use our
feedback form and let us know what you think.

Feedback Form