Where Does Encryption Fit in Privacy Regulations?

Organizations today view data as an asset. In fact, most companies pride themselves on the data they have. Yet at the same time, global privacy regulations have put strict rules on how organizations store and keep secure customers' data.

According to a recent study by IDC, by 2023, people will create nearly 102.6 zettabytes of data every year. Data volumes like this may sound good, but leave consumers open to a broader array of cybercrimes and make organizations vulnerable as well. Organizations are stepping up their data encryption practices in an effort to make it safer for the data they have stored and to reduce the risk of data sprawl.

Data Encryption Under the GDPR

The General Data Protection Regulation (GDPR) is the largest data privacy regulation in the world and is currently viewed as a base standard. The GDPR recognizes encryption as an important part of ensuring data privacy, which is why under article 32, "security of processing"  the GDPR states:

“Taking into account the state of the art, the costs of implementation and the nature, scope, context and purposes of processing, as well as the risk of varying likelihood and severity for the rights and freedoms of natural persons, the controller and ...


Read More on Datafloq