ACCUTIVE WHITE PAPER
ENCRYPTION OR DATA MASKING: EVALUATING STRATEGIES FOR GDPR COMPLIANCE
The EU’s GDPR (General Data Protection Regulation) is the latest challenge facing the data-driven enterprise – and perhaps the most demanding to date, extending significant data protections to EU citizens no matter where they work, live, or do business. These are deep requirements for data controllers, and beg the question ‘how does GDPR fit into the spectrum of enterprise data management techniques and technologies?’ Compliance cannot be achieved with a single, one-stop GDPR solution, as is also true with regulations such as HIPAA, PCI-DSS, GLBA, OSFI/PIPEDA, and FERPA. Ideally, compliance is handled more holistically – creating an environment of preparedness and data privacy with a smart, long-term approach to data protection. This paper will evaluate enterprise data masking as a technique to address this goal, contrasting it to encryption and demonstrating its value in maintaining data security and privacy, while ensuring data continues to be both useful and safely accessible across the enterprise.