It is not a question of whether you will be hacked, but when. And if it happens, it is essential that you can demonstrate that you have done everything possible to protect company and personal data. But how do you prove this?
Officially, the legislation does not dictate any standard(s) when it comes to compliance with the General Data Protection Regulation (GDPR). It is your responsibility to protect privacy-sensitive information, but how you do it – and how you report on it – is up to you.
Legally liable
On the one hand, that sounds nice, but on the other hand, this ‘freedom’ naturally raises questions. When are you safe, and what will a judge be satisfied with in the unlikely event of a lawsuit after you have become the victim of a cyber attack? After all, legally speaking you are liable for the security of your website, and therefore also for the consequences of a possible hack. It is therefore essential that you can make it legally plausible that you have done everything possible to prevent a hack.
GDPR reports
Trust Guard not only offers a reliable security scan that points out vulnerabilities in your website, but you also get very complete periodic GDPR reports. And that’s not just some cursory reports from the back office, but an overview with found security vulnerabilities and solutions as well as a log of the measures you have taken to solve problems.
Proof
If a security breach does occur, you at least have all the cards in hand to prove to a judge that you have been continuously active with accurate security. Because Trust Guard reports are periodic, and a scan can be run as often as you like, you can easily demonstrate a certain level of constant attention to security.
Innovations Trust Guard
As we’ve written before, innovations at Trust Guard are constantly on our radar. And with results: while we were still working with the PCI standard at the very beginning, we have since added a range of additional standards. Besides GDPR reports, you can also choose from PCI/DSS, OWASP, HIPAA, SOx and ISO27001, and the frequency of scans and reports you can determine yourself. Daily, monthly, quarterly: it’s up to you!