General Data Protection Regulation
KEC has spent a considerable amount of time to study and decipher the GDPR legislation, allowing the development of a Solution for GDPR management that will be embedded in your Dynamics NAV application.
The General Data Protection Regulation (GDPR) comes into force in May 2018 and represents a significant overhaul of data protection legislation; the accountability principle will mean that businesses will need to examine how they hold and use data and take steps to demonstrate compliance with the data protection principles.
As businesses hold huge amounts of personal data relating to Customers, Vendors and Employees within their Dynamics NAV systems, currently there is very little functionality in existing or older versions (pre NAV 2018 / ‘Tenerife’) to support the new legislation.
Perspective of GDPR
- Personal / Sensitive data discovery
- Right to be Informed
- Right of Access
- Right to Rectification
- Right to Erasure
- Right to Restrict Processing
- Right to Data Portability
- Automated Encrypt and Destroy
- GDPR activities register
KEC has a methodology to guide our Customers through all four stages mentioned below and identify the needs to apply GDPR to fit each Company requirements and compliance within the Regulatory law.
Identify what personal data you have and where it resides.
Govern how personal data is used and accessed.
Establish security controls to prevent, detect, and respond to vulnerabilities and data breaches.
Execute on data requests, report data breaches, and keep required documentation.