GDPR
GDPR
Increased requirements for all businesses
The GDPR has been in force since May 2018. It regulates how organisations operating in the EU shall gather, access, store and process personal data. The law, which replaced the Personal Data Act, shall give organisations incentives to strengthen their work on data protection issues, expand the protection of personal data and give individuals greater control over how their personal data is used.
- 4 %
- 4% of total turnover is the maximum fine for a breach of the GDPR
- 1087
- million euro was the total cost of GDPR sanctions in 2021
- 5767
- notifications of personal data breaches were made to the Swedish Data Protection Authority IMY in 2021
requirements
What security requirements are imposed by the GDPR?
Affected individuals shall be given easy access to their own data
Affected individuals have the right to have their data transferred from one organisation to another
Affected individuals have the right to have their data deleted
Serious personal data breaches must be reported within 72 hours of the incident being detected
Authorities, public bodies and selected actors must appoint Data Protection Officers (DPOs)
consequences
What consequences can a violation lead to?
High fines
Violation of the GDPR can lead to fines of up to SEK 200 million or 4% of total sales, whichever is higher.
Damaged reputation
Leaked or mishandled personal data can affect how the outside world views the company, and potentially lead to lost business.
Damages
If your company registers personal data without permission, the individuals concerned can claim damages from the one who is responsible for the personal data, ie you and your organization.
Solutions
How we help you comply with the GDPR
Data Protection Manager as a service
Our data protection and privacy specialists can step in on a full-time or part-time basis to solve your organisation's needs. Our experience enables us to provide quality advice, auditing and monitoring of data protection and privacy work.
Consultants
We have helped many companies with the security puzzle of GDPR, from identifying and inventorying existing personal data, conducting impact assessments and implementing relevant controls in accordance with the legal requirements
BlueSOC
Our BlueSOC monitors all user and system activity in your organisation to identify suspicious or malicious behaviour in your business, what the GDPR framework classifies as personal data incidents.
Penetration test
Do you have systems or applications where personal data is stored? In that case, it is a good idea to have an expert test your security. Our penetration testers have experience from having security tested hundreds of systems and applications in all types of companies.
A few words from one of our clients
"Sentor performed sterling work, which made everyone in the organisation aware of GDPR and involved them in the process. Everyone was genuinely pleased when it felt like we were making progress and were on the right track."
Contact us
We offer several contact routes and provide feedback as soon as possible. If you have sensitive information, we ask you to use the encrypted method.
+46 8 545 333 00
We answer 24/7info@sentorsecurity.com
For general inquiriessoc@sentorsecurity.com
Use our PGP-key