D365 In Focus - GDPR

D365 In Focus - GDPR

In this episode of Dynamics 365 In Focus we hear from Marco, our CTO, on the impact General Data Protection Regulation (GDPR) will have on your organization's data.

Additional Resources

Video Transcript

Hi, my name is Marco. I'm the CTO of Power Updates and I have the pleasure to be here today to answer a few frequently asked questions about GDPR and how it impacts our work and our customers. GDPR stands for General Data Protection Regulation. It's a new European Union regulation that will enter into effect on 25th of May, 2018. The objective of this new regulation is to redefine the way we deal with personal data, and how we capture and process that data, in the light of all the technology changes over the last 20 years.

In some scenarios, PowerObjects will act as a data process for the organization. For example, when you use some of our PowerPacks that require data processing in the cloud, or when we do certain type of delivery projects that require accessing your customers' data. In those scenarios, we'll be a data processor and the organization will be the data controller, and we'll have to comply with the GDPR regulations. Power Updates will always assist you and provide all the information required to achieve compliance and provide all the details and information required.

PowerObjects’ responsibility is to process data as agreed with you and make sure that that data is safe at all times. This includes security measures that we already have in place, and also requires us to have certain documents, policies, and procedures to demonstrate GDPR compliance. There are a number of PowerPacks that do data processing in the cloud. In those cases, we follow industry best practices to encrypt the data transit and at rest. And data is never kept in our cloud for longer than 30 days.

Your organization can always choose what jurisdiction your data resides, and we will never transfer data outside of that jurisdiction. We are working in four critical areas to ensure compliance with the GDPR. The first one is to update our documents and policies and procedures to make sure they are all compliant with GDPR. The second one is security. We take security very seriously at PowerObjects. We already conduct weekly and monthly security scans on our infrastructure, as well as regular penetration testing.

We are using GDPR as an opportunity to review industry best practices and bring new capabilities to our team. The third one is communications. Our marketing team is very busy reviewing all the communications and notifications we send to our clients, to ensure that they are compliant with GDPR. Finally, we are creating technical implementation guides to help our clients understand how we process data on the cloud. To learn more about GDPR compliance and how you can make sure your Dynamics 365 is compliant, please visit our website.

Thanks for watching Dynamics 365 In Focus.

Never Miss a Video, Subscribe Now!