Posts Tagged ‘GDPR’

GDPR is all about PII data

Friday, November 24th, 2017

GDPR is all about PII data. Observers not familiar with the practices of privacy and security often look perplexed when you tell them that - with the exception of data protected in transit for use with web applications and virtual private networking - most data stored and accessed via applications on-premises or via hybrid, private and public Cloud applications, is unprotected.

But in this era of evaporated security perimeters, it has always been all about PII (personally identifiable information) data.


In the era of the General Data Protection Regulation (GDPR)  of the European Union (EU), it is all about PII data.

Although most organizations possess supervisory policies and principles about which data is considered public, confidential and sensitive, very few actually go to the trouble of automating the enforcement of these policies. Few companies go to the trouble of identifying, flagging, tagging and marking PII data. But this all changes starting with GDPR.