ENCRYPTION OR DATA MASKING: EVALUATING STRATEGIES FOR GDPR COMPLIANCE

The EU’s GDPR (General Data Protection Regulation) is the latest challenge facing the data-driven enterprise – and perhaps the most demanding to date, extending significant data protections to EU citizens no matter where they work, live, or do business. These are deep requirements for data controllers, and beg the question ‘how does GDPR fit into the spectrum of enterprise data management techniques and technologies?’ Compliance cannot be achieved with a single, one-stop GDPR solution, as is also true with regulations such as HIPAA, PCI-DSS, GLBA, OSFI/PIPEDA, and FERPA. Ideally, compliance is handled more holistically