Working in the cloud in accordance with data protection regulations despite failure – eCommerce Magazin


On July 16, 2020, the European Court of Justice declared the data protection agreement called Privacy Shield to be invalid. The decision makes it clear that European data in the USA and in many other non-European countries are not secure from access by third parties if local laws do so Legitimize access. What many are not aware of: Even logging in to services that are located in the USA can lead to an outflow of data and thus have legal consequences.

Privacy Shield: pseudonymization of user data

With the new pseudonymization module, Rohde & Schwarz Cybersecurity enables Microsoft 365 users to work pseudonymized and in compliance with data protection regulations while at the same time complying with all existing workflows. For this purpose, the real user data is completely decoupled from Microsoft’s Azure Active Directory and thus from Microsoft Teams with the help of pseudonymization. The pseudonymization replaces Identification features such as names by pseudonyms. This prevents the unambiguous identification of a person and R&S Trusted Gate does not transmit any personal data that can be processed by the cloud operator.

In the local Active Directory, however, the real users can still be used with their IDs and respective roles and are only transferred to the cloud systems in pseudonymized form. The Pseudonymization runs transparently for the user and existing workflows are retained with the identities in plain text. With pseudonymization, globally operating companies can comply with global data protection regulations outside of the Privacy Shield.

Data protection solution follows a data-centric approach

The R&S Trusted Gate product range from Rohde & Schwarz Cybersecurity is a cloud data protection gateway solution that consistently implements a data-centric approach. R&S Trusted Gate can be seamlessly integrated into Storage systems common public clouds such as Microsoft Azure, Google, AWS and collaboration tools such as Microsoft 365 and SharePoint and guarantees the highest level of security and control when using these platforms.

Legal requirements and compliance rules can also be easily implemented in global cloud environments. R&S Trusted Gate runs transparently in existing applications so that workflows remain unchanged. A special search function enables a secure full-text search even in encrypted documents. In addition, important functions such as versioning of documents continue to work without restrictions.

Privacy Shield
R&S Trusted Gate can be integrated into existing applications. (Image: Rohde & Schwarz Cybersecurity)

Rohde & Schwarz Cybersecurity is an IT security provider that protects digital information and business processes of companies and public institutions from cyber attacks worldwide. The company offers data security solutions for cloud environments, advanced security for websites, web applications and web services, as well as network encryption and endpoint security. The trustworthy security solutions are developed according to the security-by-design approach and proactively prevent cyber attacks. (sg)

Also read: Privacy Shield: 5 tips for implementing EU data protection guidelines