Unloved data protection is currently at the top of senior managers’ agendas and has caused increased pressure to act across all sectors: After a 2-year transition period, which many companies have insufficiently taken note of, if at all, with effect from 25th May 2018, the European General Data Protection Regulation (GDPR) applies. This means that they are obligated to ensure that processes comply with data protection regulations, and to comprehensively document them. Businesses are furthermore obligated to perform continued risk analysis and to report breaches within 72 hours.
GDPR applies severe penalties in case of non-compliance with the protection of personal data, amounting to a maximum of 20 million Euros or four percent of the (worldwide) annual turnover, with the possibility of imprisonment for those responsible. The regulatory authorities intend to even sanction non-provision of GDPR compliant processes, such as data encryption and comprehensive access protection. Precisely this has become the biggest challenge for companies as the guidelines for the protection of personal data require a reorganisation of their business processes and operation.
With oneclick, the Workspace Provisioning and Streaming Platform for simple and secure remote access, businesses can overcome some GDPR hurdles without having to carry out far-reaching modifications to their infrastructure: Using oneclick, they stream the desktops and data to both stationary and mobile terminal devices, which ensures that personal information is not transmitted without encryption and that personal data is not stored unintentionally outside the company in files on end devices.
“When using our platform, personal data is not filed either in the cache, nor the log-files of applications on terminal devices“, explains Florian Bodner, CIO of oneclick AG. “Companies do not have to make any changes to their existing infrastructure as it is not necessary to install clients or plug-ins on servers or terminal devices.“ This not only simplifies mobile use of on-premises information via the browser, but also ensures enhanced protection from unauthorised access and the misuse of personal data in contract data processing.
“The oneclick platform includes all components of a DMZ, i.e. firewall, Virtual Private Network (VPN), Application Delivery Control (ADC), proxies as well as Identity und Access Management (IAM)“, Bodner explains. Personal data is protected by one more factor via controllable, authorised access rights and restrictions for applications. And as all transactions are transparent and traceable, oneclick ensures that companies are also on the safe side of GDPR with regard to their new obligatory documentation.