GDPR

As a secure, highly configurable, and policy-driven point of access to the web, Silo helps to ensure that enterprise organizations can meet GDPR compliance requirements. By leveraging features that are built-in to the Silo Admin Console, our customers can use Silo as a part of their own compliance planning and implementation efforts.

The General Data Protection Regulation (GDPR) is a European Union law that imposes privacy and security obligations onto organizations around the world. The provisions within GDPR address requirements for data security, data transfer, data portability and data subject rights, among others. Its principles also ensure that organizations (like Authentic8) meet strict obligations as either the controllers or processors of personal data.

When using Silo, our customers benefit from our compliance with GDPR:

• Data protection principles: Our service is built transparently, and we only process data for the purpose of providing secure access to the web.
• Accountability: Authentic8 maintains strict role and responsibility assignments among its personnel; conducts annual security awareness and customer data handling training; and ensures data processing agreements are in place with its sub-processors.
• Data security: As a cybersecurity company, Authentic8 takes data security seriously. Our service is built to meet the security controls included in NIST SP 800-53r4 that allow us to provide services to the private and public sectors alike.
• Protection by design and by default: Authentic8’s system development life cycle (SDLC) was purpose-built to ensure that data protection is a core part of every information system and feature that makes Silo work.

Additionally, our enterprise customers can leverage Silo features to meet GDPR requirements that include key GDPR concepts like consent management, processing restrictions, and the right to information and data portability.

If you have questions, please don’t hesitate to contact us at privacy@authentic8.com.