Using vScope for GDPR compliance
Product Marketing Manager
With just a few weeks left before GDPR enforcement day (25 May 2018), we’ve received a lot of enquiries related to how vScope can be used in GDPR purpose. In order to do so we are posting numerous content on our website to help you get started!
There are no GDPR tools
GDPR is a legal framework that spans across technologies, organizational requirements and processes to ensure that end user privacy is being protected and treated with respect by the one’s storing personal and/or sensitive data. Hence there is no magic bullet or single tool that will allow you to meet the requirements stated by GDPR. Sure, there might be some tools to help you on the way but the journey towards GDPR compliance is not achieved solemnly with a “tool”.
A key to GDPR compliance is keeping information in order to be able to answer questions such as what data is stored, where is it stored, and who can access it. In order words, you will need to ensure that you have a proper documentation of what your IT really looks like (for the IT organization that is).
Do you have such documentation? (No, I’m not talking about Excel sheets)
What does GDPR mean for my organization?
Let us divide GDPR into two main projects for the organization:
- Getting GDPR compliant
- Staying compliant
Hopefully you are already well on your way on project one. Once done, part 2 should be fairly straight forward, right? For most organization this process is quite complex and involves collaboration between several organization units. For the IT organization, GDPR can mean everything from aligning documentation and processes with new standards to a larger technical project involving new backup routines, migration of servers and security assessments related to access control. Most importantly in both these projects is to aware of what the IT looks like, who can access information and if anything changes.
To make our message even clearer and not getting stuck in the marketing fluffiness of GDPR we also have a blog series about GDPR & IT operations
vScope and GDPR
Now to the part you all came for: Can we use vScope for GDPR? Good news, yes you can! Updated IT documentation, security audits, gap analysis, access management are some of the features/use cases that is provided by vScope. Using vScope will help your organization to facilitate the transparency needed to both getting compliant as well as staying compliant. vScope provides a great platform for IT to share reports and collaborate with other units of the organization meaning that there is really no technical skills required to access IT-information.
To help you get started we have collected a few resources on our website:
vScope and GDPR
A general walkthrough of how vScope relates to the legal framework. Probably most interesting for you that are not working hands-on with the IT operations.
GDPR & IT operations
To make our message even clearer and not getting stuck in the marketing fluffiness of GDPR (that seems to be spreading all over the internet) we also have a blog series about GDPR & IT operations, showing a few use cases of how vScope can be used for GDPR compliance in an IT organization. Happy reading!
Part 1 – Users
Document users and their access to sensitive information.
Part 2 – User groups
Build a report about group nesting and their access rights.
Part 3 – Resources
Identify and track what resources that might contain sensitive data.
More use cases…
vScope offers much more use cases related to staying informed about your IT and ensure orderliness in the operations. All which is very important not only for GDPR but for operational excellence.
If you want to learn more about these use cases I recommend you to check out our guide section or video resources. Links can be found below.
Happy vScope:ing!
Product Marketing Manager
Sign up for newsletter
Join our community and 1000+ IT professionals by signing up for blogs, news and business insight through our newsletter