Your results...

  Print Your Results   Start Again

Questions

Your Response

How Sophos Can Help

Do your core business operations involve the regular and systematic monitoring of data subjects on a large scale?Data subjects are individuals who are identified or identifiable from data.
For the purposes of this check data refers to information which directly or indirectly identifies individuals. It includes, but is not limited to, payment details, customer records, healthcare information.

Yes: You need to adopt the full requirements of this Regulation, including a named Data Protection officer. No: If you process personal data, you will still need to comply with the vast majority of the Regulation, including the security requirements set out in Article 30.

Yes: Read our whitepaper on the EU Data Protection regulation to learn more about the proposals and what they will mean to companies globally.
Read Whitepaper
No: Read our whitepaper on the EU Data Protection regulation to learn more about the proposals and what they will mean to companies globally.
Read Whitepaper

Do you have a data protection policy which guides your employees in how to keep personal data secure?

Yes: Well done. Make sure that it is clearly communicated to your employees. No: You should adopt a data protection policy and then communicate it clearly to your employees.

Yes: Use the Sophos sample Data Protection policy as a reference if you wish to update your own policy in the future. Customize it to meet the specific needs of your organization.
Get Policy
No: Use the Sophos sample Data Protection policy as the basis for your own company policy. Customize it to meet the specific needs of your organization.
Get Policy

Are your company laptops encrypted?

Yes: Well done. The personal data on it is safe, even if the laptop gets lost or stolen. No: You should secure personal data on laptops. Fines for unprotected data breaches will range up to €20 million or 4% of total worldwide annual turnover, whichever is higher.

Yes: If you’re using BitLocker encryption but finding it difficult to manage, take a look at Sophos Central Device Encryption. It seamlessly manages keys and recovery functions on BitLocker- and FileVault 2-encrypted drives, simplifying deployment and management. No: Take a look at Sophos Central Device Encryption. It protects data on multiple devices and operating systems without getting in the way.
Try for Free

Do you store personal data in the cloud? This could include customer data in salesforce.com, on Dropbox etc.

Yes: You should ensure that data is encrypted at all times, including when it’s in transit (e.g. while being uploaded).
Also be mindful that transferring data, including via the cloud, to countries outside the European Economic Area (EEA) is restricted under the Regulation.
No: If you move to the cloud in the future, make sure that the ability to encrypt the data – both in the cloud and also when being transferred – is on your core requirements list.
Also be mindful that transferring data, including via the cloud, to countries outside the European Economic Area (EEA) is restricted under the regulation.

Yes: Sophos SafeGuard Encryption automatically and invisibly encrypts/decrypts files as they are uploaded or downloaded from cloud services. No: Sophos SafeGuard Encryption automatically and invisibly encrypts/decrypts files as they are uploaded or downloaded from cloud services.
Try for Free

Do you encrypt personal data sent by email?

Yes: Well done. Email is a common source of accidental leaks. No: Email is a common source of accidental leaks and you will need to adopt an email encryption solution. Fines for data breaches will range up to €20 million or 4% of total worldwide annual turnover, whichever is higher.

Yes: Sophos Email Appliance uses SPX Encryption with policy-based DLP which is the simplest, most effective way to secure your email. No: Sophos Email Appliance uses SPX Encryption with policy-based DLP which is the simplest, most effective way to secure your email automatically detects sensitive information leaving your organization by email, and either blocks it or encrypts it.
Try for Free

Do you have personal data on removable media e.g. USB devices, CDs, DVD, etc.

Yes: You should make sure that the data is encrypted and can only be accessed by authorized users. No: If you do start holding data on these media in the future you should ensure that it can be encrypted.

Yes: Sophos SafeGuard Encryption provides complete protection on multiple endpoints, including USB devices and CDs, without impacting performance. No: If you need to secure data on removable media in the future, consider Sophos SafeGuard Encryption. It provides complete protection on multiple endpoints (USB devices, CD's, etc.); allowing users to share encrypted data without slowing them down.
Try for Free

This is not an exhaustive review of all elements of the Regulation, nor is it legal advice. Please consult your own legal experts if required.