by Angela Guess
According to a new press release, “RiskIQ, the leader in digital threat management, today announced new functionality in RiskIQ Digital Footprint to help organizations ensure that their websites comply with the new EU General Data Protection Regulation (GDPR). Under GDPR, which covers the protection of EU personal data, fines can be considerable if the personally identifiable information (PII) is compromised or solicited and handled insecurely. RiskIQ Digital Footprint’s new PII/GDPR analytics feature helps expedite compliance during the initial and subsequent GDPR audit processes by actively identifying websites belonging to an organization, as well as highlighting issues with specific pages that collect PII. The regulation, in effect in May of 2018, applies to all organizations that actively engage with EU citizens—even if they have no physical presence in the EU.”
The release goes on, “GDPR governs the collection, storage, and usage of EU personal customer data and mandates that PII is collected and transmitted securely. Besides data breach notification, an offending organization can face fines of up to 4 percent of their annual revenue (€20 million) should inadequate security provisions be evidenced. GDPR also includes specifications designed to ensure that EU citizens know and consent to how their information is being used. GDPR, as applied to the use of websites with EU citizen personal data solicitation, explicitly requires the following personal data safeguards: Collect data in a secure, encrypted way; Provide terms and conditions that are easy to understand, with an opt-in requirement to accept; Notification within 72 hours of data breach discovery to a GDPR supervisory authority and the offended citizen.”
Read more at Globe Newswire.
Photo credit: RiskIQ