Expert Advice Community

Guest

GDPR - Encrypted e-mails

  Quote
Guest
Guest user Created:   May 02, 2018 Last commented:   May 02, 2018

GDPR - Encrypted e-mails

I am wondering if/when/how we should use encrypted e-mails at my company? In which cases could it be a necessary means to ensure some extra compliance in relation with the GDPR. Are there any general guidelines? Which information should entail encryption?
0 0

Assign topic to the user

EU GDPR DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

EU GDPR DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Andrei Hanganu May 02, 2018

Answer:

The EU GDPR in art. 23 – “Security of processing” (https://advisera.com/eugdpracademy/gdpr/security-of-processing/) mentions encryption as a means to protect personal data. It also mentions that “appropriate technical and organisational measures “ need to be taken according to the risks involving a specific processing activity.

So, basically is up to the controllers and processors to determine which security measures they need to take. Coming back to the question whether an email should be encrypted or not you would need to think about the content of your emails. Basically emails that contain large amounts of personal data should be encrypted as well as emails containing sensitive personal data.

If you want to learn more about the security of personal data you can check out our article “ How cybersecurity solutions can help with GDPR compliance” https://advisera.com/eugdpracademy/blog/2017/11/27/how-cybersecurity-solutions-can-help-with-gdpr-compliance/
Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

May 02, 2018

May 02, 2018

Suggested Topics

Guest user Created:   Jul 04, 2022 EU GDPR
Replies: 1
0 0

GDPR intermediary

Guest user Created:   Jun 30, 2022 EU GDPR
Replies: 1
0 0

Laboratory space

Guest user Created:   Jun 22, 2022 EU GDPR
Replies: 1
0 0

Doubts about ODPR or GDPR