GDPR and processing of personal data
Assign topic to the user
Answer:
The GDPR applies regardless if the personal data is processed internally or shared with third parties outside the company.
2. Also, are we able to stored IP addresses for the purpose of mitigating DDoS attacks or must we anonymize or use GEO location
Answer:
You may be able to retain IPs based on "legitimate interest" for security purposes such as DDoS attacks. However, the users need to be informed about the processing of their personal data according to art. 13 an 14 of the EU GDPR.
If you need to find out more about the EU GDPR please check out this EU GDPR Foundations Course https://advisera.com/training/eu-gdpr-foundations-course//
Comment as guest or Sign in
Aug 20, 2019