GDPR logging – General Data Protection Regulation
Since 25 May 2018, you as an organization must comply with the GDPR legislation, or the General Data Protection Regulation as the law is called in Dutch. Logging data is an important factor that can contribute to regulatory compliance. Puur Data provides a standard GDPR logging solution that we can quickly implement for you. The data you need to log can consist of hundreds of millions of logging lines produced by a multitude of applications. Our solution makes it possible to store these centrally and make them easily searchable. The solution checks whether all log rules have been read in and, by means of machine learning algorithms, deviating data patterns can be recognized, which can indicate, for example, a data leak. In the latter case, you will be notified automatically, allowing you to intervene quickly.
GDPR Logging demo
We have made a demo to show how this could work for you. For the Demo we use a fictional application with the personal data of 3000 customers*. There are seven employees who have access to the data. It is logged who performs which action and from which person the data is requested. The actions can be; Addition, Download, Print, Update and View. The data has been logged from the beginning of 2017 and approximately 127,000 actions are logged every month. Our web frontend makes it easy to find what happened at what time.
*We used an open source database from the city of Chicago for this.
Presentation GDPR logging solution
During the Elasticsearch event, which Puur Data organized together with Elastic in the NMM, Puur Data gave a presentation about a ready-made solution for logging with regard to GDPR and NEN 7513. Click on the video to view the presentation.