Data is an organisation's most valuable asset. With a 50% growth rate in electronic data every year and data protection legislation on the horizon (EU GDPR in May 2018) - protecting your information has never been more important.
GDPR forces businesses to look at the data they hold and ask some fundamental questions:
1. How much data do I hold?
2. Where am I storing it?
3. How am I protecting it?
As personal identifiable information (PII) can sit in a range of locations from CRM and financial systems to unstructured documents â€“ overseeing that data is protected at every stage of its lifecycle is an overwhelming task for IT and security teams.
What is the solution?
Enter Office 365: Security and Compliance Center, a collection of online services that allows your organisation to centrally manage your data security and compliance requirements. Admin tools assist you in governing your services data across the entirety of Office 365, allowing organisations to confidentially manage their content in a way that meets compliance requirements with the GDPR.
1. How much data do I hold? Using eDiscovery
eDiscovery uses case management search and export functions to help you quickly investigate and identify content found in Exchange mailboxes and SharePoint sites. You can also use eDiscovery to analyse large, unstructured data sets and control it to meet regulatory requirements.
2. Where am I storing my data? Managing your information lifecycle
Ensuring your data is kept secure and destroyed when you no longer need it, is an ongoing requirement of the GDPR. Data governance in Office 365 allows you to manage the full content lifecycle, from importing and storing data at the beginning, to creating policies that retain and then permanently delete content at the end of its lifecycle.
Classification labels further allow you to attach preservation and destruction policies to your data. More sophisticated auto classification can be utilised using third party products such as ConceptSearching and TermSet.
3. How do I protect my data? Running data loss prevention (DLP) policies
The prospect of a data breach is enough to keep any Data Privacy Officer up at night. The Security and Compliance Center allows you to run a data loss prevention (DLP) policy across your organisation to identify, monitor and protect sensitive information. Organisations can create a policy, according to an organisation's specific needs, whereby you choose what information you need to protect.
Start protecting your data today
Find out how Office 365 can help your organisation meet GDPR requirements. Get in touch