On May 25, 2018, the GDPR, the new EU data protection rules, came into force and many companies and associations are still working to comply. One simple measure is to use Storegate for storing and sharing files in the cloud. Storegate meets the requirements for information to be stored within the EU (all data is located in Sweden), logging of events on the service and the establishment of a valid Data Processing Agreement, unlike many other cloud services. Below we go through more practically how Storegate helps you comply with GDPR.
Account access and authentication
The entire service is developed with your privacy in focus and when you create your account on Storegate, we have created the conditions for you to choose a strong username and password that is adapted to your company’s policy. Among other things:
- Password factors (minimum number of characters required of numbers, special characters capital letters etc.)
- Password reset from the administrator or via support
- Limited number of login attempts (brute force protection)
- Possibility of logging out other devices
- Token-based Oauth login for clients and web
- Two-step verification with apps that support the TOTP protocol, e.g. Microsoft and Google Authenticator
Access to data
Individual and group-based permissions allow you to configure access to the files/folders.
Expanded file sharing
Allows you to decide who outside the group should access files/folders with different settings such as password protection, hide existing files when collecting files, set a limit on the number of downloads, etc.
Wastepaper basket
Protects against accidental loss of information. On the Team account, the administrator manages this for all shared files.
Encryption of data
Both during transmission and when stored on the servers (in the cloud).
Version management
Allows you to easily recreate previous versions of files.
All data is stored in Sweden
EU storage requirements under the GDPR.
Logging of events
Allows you to see what has happened to files historically.
The right to be forgotten
Storing all data in one place makes it easier to find and delete specific files.
Action in case of infringement
Through the event log, you can see what happened in the event of an intrusion.
Security through ease of use
Having simple tools for rights and settings increases the possibility of securing stored information. If you have advanced services, it is easy for end users not to use the service properly or, in the worst case, not at all.
Further information on security and GDPR can be found here:
If you have any other questions regarding the position, please contact us at support@storegate.com
