Help with GDPR and encrypting Emails \ CD's

I am looking for some advice on GDPR

Does GDPR require us to encrypt all outgoing emails? If so what is the best software for achieving this?

Same question for CD - DVD - which contain medical records

How secure is Office 365 Email in the cloud - I presume it's GDPR compliant?

Any other advice regarding GDPR would be great.
Ian PriceIT ManagerAsked:
Who is Participating?
 
KimputerConnect With a Mentor Commented:
For emails, you could implement some PGP method, ex. https://www.gpg4win.org/about.html
Only emails involving personal information needs to be encrypted. Also, obviously, you need to involve the other party as well, as you both need to implement the same solution.
If no protocol with the other side has been setup and you DO need to send over personal information, you can also leave the email message itself clean (from personal information), and the rest, put it in a word/excel doc or whatever, and send it as a zip file with password protection. The password itself, you can deliver through a phone conversation.
Email will be a difficult matter, as there are always two sides when email is involved.

CD/DVD, use special software please, like ESET Endpoint Encryption: https://www.eset.com/us/business/endpoint-security/encryption/

Office 365 itself is not GDPR compliant, as you can easily send out an email with personal information to an unknown person (or even attach a full database as a flat file).
0
 
Rob HensonFinance AnalystCommented:
Are you on LinkedIn?

If so, search for a UK guy called Tony Marshall. He is a GDPR specialist and will be able to advise.

https://www.linkedin.com/in/tonymarshallgdpr

Thanks
Rob
0
 
Naveen SharmaCommented:
Email security solution for successful GDPR compliance include:

Email Archiving.
Advanced Threat Protection from malicious URLs, attachments, phishing attacks.
Email Encryption and Data Loss Prevention to ensure that your organization is not at risk of losing sensitive information.

Transferring personal data by CD or DVD:
https://gdpr.secourriel.com/mod/wiki/viewversion.php?pageid=57&versionid=286

Worth reading, GDPR Guides:
https://www.lepide.com/gdpr-guides/

GDPR Compliance – Data Collection Rules
http://expert-advice.org/security/gdpr-compliance-data-collection-rules/
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.