Privacy by Design in practice

Privacy by Design in Practice

The past year saw the acceleration of two already important information security trends: the ever-increasing threat of data breaches  a rising consumer and regulatory oversight on corporate data processing. Indeed, the year was not a good one for privacy – high profile data breaches range from the Marriott Hotels (500 million people), through marketing firm’s Read more about Privacy by Design in Practice[…]

Data Breach Prevention: Types

Preventing Various Types of Data Breaches

Data breaches happen practically every day. Personal, including financial and medical data leak to cyber criminals as well as intelligence agencies. Some notable breaches include the Equifax breach, where dozens of personal data fields were leaked, and the recently announced Marriott breach, where passports, credit cards and locations of people at a given time were Read more about Preventing Various Types of Data Breaches[…]


Releasing SentinelDB, the Privacy By Design Database

Data breaches are happening practically every day. Reputations are damaged, customers are unhappy and regulators are more and more demanding. Data protection is no longer just a hassle that the legal department has to handle – it must be an integral part of each software system. That’s why we leveraged our in-depth experience with GDPR Read more about Releasing SentinelDB, the Privacy By Design Database[…]


11 Cyber Security Tips to Achieve GDPR Compliance

Organizations, especially those collecting and using personal data, must take the necessary measures to ensure the confidentiality, integrity, and security of the data, therefore to be GDPR compliant as stated in Article 5. This objective could be achieved only by following the best practices in protecting and maintaining the IT systems. Below are some cybersecurity Read more about 11 Cyber Security Tips to Achieve GDPR Compliance[…]


GDPR Logging Requirements

The hype about GDPR is dying off, as apparently the world didn’t end on May 25th. However, best practices in data protection are still valid, and we’d like to focus on logging as one of them. The Regulation isn’t explicitly talking about logs, however many data protection authorities consider logs to be a good way Read more about GDPR Logging Requirements[…]


GDPR vs PCI DSS: How they complement each other

Nowadays, the data security and data protection are crucially important not only for the business but also for the public sector. To safeguard the customers’ rights, organizations must follow established rules and regulations and the best security standards such as the GDPR and PCI DSS. Overall In essence, the GDPR and PCI DSS overlap in Read more about GDPR vs PCI DSS: How they complement each other[…]

What US Companies Need To Know About GDPR

GDPR is a topic that has concerned EU-based companies since 2016. In became effective on the 25th of May 2018. However, not just EU-based companies need to be concerned about the personal data processed by their organization. More and more US-based ones are also looking for a way to effectively solve the issues that stem Read more about What US Companies Need To Know About GDPR[…]

List of Tools And Sources That Will Help Your Business Achieve GDPR Compliance

Everybody is talking about GDPR. Many organizations are spending time and money to cover all aspects of the General Data Protection Regulation. Many more offer fulfillment services. For this reason, we have gathered the information on the Web we have found most relevant – tools, training resources, and certification information in one place. Most of Read more about List of Tools And Sources That Will Help Your Business Achieve GDPR Compliance[…]

GDPR documenting processes

How to fulfill Art. 30 from GDPR (Records of processing activities)?

What’s the Aim of GDPR? GDPR is a regulation everyone is recently talking about. It will impact all the organizations that process personal data of EU residents so it will force most companies to take fundamental organizational and technical measures to ensure compliance. Don’t panic, though: The idea of the GDPR is not to eliminate Read more about How to fulfill Art. 30 from GDPR (Records of processing activities)?[…]

A presentation about GDPR for developers

Our founder Bozhidar Bozhanov has given a useful presentation about the technical aspects of GDPR on a meetup in Amsterdam last week. You can see the slides here: If you’re interested, you can also join a webinar on the same topic, organized by our friends at AxonIQ, where Bozhidar will join Frans Vanbuul. You can Read more about A presentation about GDPR for developers[…]