Skip to content

Are You Ready for GDPR? 5 Questions to Ask Customer Data Partners

Nitay Joffe

Founder & CTO

With the advent of GDPR, global brands face new sweeping limits on the way they store, use, and share customer data.

“And compliance does not end at the boundaries of your enterprise,” writes Nitay Joffe, co-founder and CTO of ActionIQ, writes in a new article for InsideBigData.

The brand’s responsibility also extends to the way third-party parties, from public cloud providers to email service providers, store, use and share their customer data, too.  These other parties, called “processors” in GDPR lingo, may claim to secure your data the right way, but you should make sure everything under the hood is as they claim.

To do so, here are five critical questions to ask all your processors.

  1. Has the processor provided a detailed map showing how personal data is handled everywhere in the processor’s extended infrastructure?
  2. Can the processor demonstrate that your data remains safe even when it passes into the hands of your processor’s own sub-processors—i.e. public cloud providers your processor relies on?
  3. Can the processor demonstrate compliance with GDPR’s data portability and fine-grained data erasure requirements?
  4. Can the processor provide comprehensive audit trails that include every transaction involving personal data, wherever it ends up in their extended infrastructure?
  5. Can the processor demonstrate that its own third-party processors are not accidentally receiving personal data?

For more details, check out the full article at InsideBigData.

Written By

Founder & CTO

Nitay loves building innovative technology and applying it to real world use cases. He founded ActionIQ to explore his passion for databases, distributed systems, & big data. Prior to ActionIQ, Nitay engineered Facebook’s data infrastructure, and was a core contributor to open source projects HBase & Giraph.



Get the latest updates sent straight to your inbox.

Ready to get in touch?

Scroll To Top