Ensure GDPR Compliance with comprehensive Backup and Recovery

Secure backup and recovery procedures are a vital component of the forthcoming, EU-wide General Data Protection Regulation (GDPR). Regardless of Brexit, the UK has already confirmed it will enforce the GDPR rules and schools and universities could find themselves in trouble if they lose or don’t properly protect their data.

BioStore's comprehensive Cloud Backup and Recovery solution ensures that personal data is protected, audited and fully controlled – even in the event of cyber-attack. Our solution gives the education industry the tools and platform it needs to be GDPR compliant 100 per cent of the time.

Access required at all times

The new GDPR rules come into force from May 25th 2018. The regulation centres on the lawful, transparent, fair and secure management of personal data. Failure to comply could result in hefty fines. Hopefully you know all that and have been preparing already.

But one sometimes overlooked part of GDPR is Article 32, Security of Processing. It states organisations should have:

“The ability to restore the availability and access to personal data in a timely manner in the event of a physical or technical incident.”

That's because the regulation is all about ensuring the secure management of personal data. Organisations need to know where it is and what’s being done with it at all times, even in the event of a cyber or technical incident.

Under the new regulation, individuals have the right to see the personal data that is stored on them or ask for it to be deleted. As such, educational organisations need to be in full control of personal data at all times, and be certain that they can access it even in the aftermath of a cyber incident or system failure. BioStore’s Cloud Backup and Recovery gives organisations that level of control day to day, but also allows full restoration should things go bad.

Under GDPR, it won't be good enough to just tell people you no longer have their personal data – you will need to be able to demonstrate that it has been deliberately deleted rather than lost, for example.

BioStore Backup and Recovery

BioStore's Cloud Backup and Recovery gives you what we call true “Zero-Knowledge” and automatic secure storage of your data.

By Zero-Knowledge, we mean the use of encryption that ensures that only those permitted within your organisation are ever able to access and see the data. Although BioStore keeps your back-up data in its cloud storage system, we can't access the data as we simply do not have the keys. Access is restricted to our customer's authorised users only – and each of those can have a different level of authority – everything from read-only to full edit rights.

Central to our Backup and Recovery is the control we put in our customer's hands. All data actions are audited, so they can keep a clear track record of which permitted users accessed the data, at what time, and what actions they took. Access can be revoked and denied to any user or service at any time.

Through our multi-factor authentication and user permissions, you can ensure only those authorised can access the data and control what each individual user is permitted to do with it – prevent the copying of files onto USB drives for example.

BioStore's Cloud Solution was also built with GDPR in mind – it allows for comprehensive, and recorded, data deletion when required for GDPR purposes.

If things go wrong, BioStore's Cloud Backup and Recovery is ready to get our customers back online and operational as soon as possible, as well as remaining GDPR compliant at all times.

What you get from BioStore's Backup and recovery for GDPR

  • True Zero-Knowledge Cloud Storage
  • Automatic Cloud Backups
  • Fully auditable tamper-proof system
  • Control user permissions
  • Data geolocation tracking
  • Multi-factor authentication
  • Guaranteed data deletion