GDPR Compliance Support for Private Clouds by FileCloud

FileCloud from CodeLathe, LLC announced the availability of General Data Protection Regulation (GDPR) compliance support for organizations utilizing private cloud enterprise file sharing.

The company’s platform provides a set of features that supports enterprise organizations to adhere to the impact of GDPR, including complete EU data-residency and support of GDPR compliance across both private and public cloud deployments. Additionally, the firm is introducing the ability to manage multiple policies across users, including GDPR, which means that organizations can choose to show GDPR specific consent only to users in the EU and not those who reside elsewhere.

“FileCloud customers now have a platform to adhere to GDPR requirements, providing secure data protection and user privacy while allowing companies to refocus on their product,” said Madhan Kanagavel, CEO, FileCloud. “With regulations going into effect in a matter of months, now is the time to ensure your organization is prepared for the impact of GDPR regulation. FileCloud is an optimal platform to help every organization to achieve full compliance in a rapidly changing landscape of government regulations.“

The GDPR is a set of rules governing data protection for all individuals within the EU and carries with it stiff penalties of 4% of revenue for companies that fail to comply. The regulations go into effect May 2018 and apply to companies located within the EU, but also dealing with user data of EU citizens. As one of ambitious and complex regulations passed by any government to protect user privacy, companies of any size may find themselves unprepared.

Company’s solutions features support organizations
toward compliance of GDPR requirements in following ways:

• User consent: GDPR requires that all users provide explicit consent to track personally identifiable information (PII). The company offers privacy settings to ask for explicit consent from users while accessing, viewing or downloading files from the firm.

• Breach notification: GDPR requires that users are notified of any breach. While breach notifications must be handled by the customer, the firm has detailed policies and breach plans in place for customer data in company’s services online.

• Right to access: GDPR provides that users may request access to any information companies possess relating to them. The company allows an organization’s data protection officer (DPO) or administrator to search for user PII across all file content and activity logs.

• Right to be forgotten: GDPR provides that users may request the deletion or anonymization of any data companies possess relating to them. The company allows administrators to delete or anonymize all user data, including any traces in firm’s services access logs.

• Data portability: GDPR provides that users may request a copy of data for use elsewhere. The solution allows the export of files in standard formats and activity logs in readable CSV files.

• Privacy by design: GDPR requires companies to provide privacy, regardless of technological implementation or design. The company’s solution is built on open standards and is designed to offer flexibility of deployment on private, public, or hybrid clouds. The firm’s services offers data residency, allowing customers to select the region of their choice for storing and processing data.

“Many well known enterprise file sharing and sync SaaS are not fully GDPR compliant yet,” said Venkat Ramasamy, COO, FileCloud. “These providers are putting themselves, their customers and partners at huge risk. FileCloud mitigates risk by providing complete control of the software infrastructure to manage data and regulation requirements.“

These features will be available December 20, 2017.

FileCloud is available for download (registration required) from the company’s customer portal.