Email Encryption becomes the law in Denmark from Jan’19

The Danish DPA announced, from the 1st January 2019, companies will have to encrypt all emails that are transferring sensitive personal data, or face sanctions.  This new rule is an interpretation of Article 9 (sensitive personal data) of the GDPR legislation.  This will give companies in Denmark or those companies doing business with Danish companies, five months to implement encryption technologies for their email systems.

The GDPR requires data controllers and processors to carry out assessments to examine the safety of personal information held on data subjects. Email encryption must be the default process if an email is holding personal or sensitive data. The Danish DPA states because of the increase in occurrences of emails being sent to the wrong recipients, encryption is the “most appropriate precautionary measure”. It is believed the legislation will apply to a big quantity of mails sent by private sector companies. [Read full article here.]

The Ireland DPC and the UK ICO’s annual reports both show similar trends with regards to the most common data breaches; emails being sent to the incorrect recipients containing sensitive data.  Surely, therefore it’s just a matter of time before these countries follow Denmark in enforcing email encryption?

Wizuda’s CFS has been built with privacy by design and includes safeguards to protect against such data breaches and comes with full end to end automated email encryption as standard. Find out more here.

the challenge - wizuda case studies

The board of a multinational medical device organisation required a secure, cloud-based solution which facilitated virtual board member collaboration on key documents in preparation for monthly board meetings.

The documentation was regularly of a highly commercially sensitive nature, largely relating to ongoing clinical trials, and as such demanded a secure and encrypted platform which could be implemented without the engagement of internal IT resources.

Key challenges that need to be  considered:

  • Geographically dispersed stakeholders
  • Highly commercially sensitive documentation
  • No internal IT involvement
  • Multiple stakeholders required to collaborate on
    single documents
the solution- wizuda case studies

Wizuda MFT gave them a centralised view of all their file transfer activities and a network overview of the data flows. IT now had instantly available reporting and could provide geographic maps and network overviews to senior management of all file transfer activities in the organisation. These could also be categorised in ways that made sense for the business from a priorities perspective. Wizuda’s unique ‘Health Check’ dashboard with automated monitoring and alerts, allowed them to manage all transfer operations proactively and ensured they were always on top of any issues.

From a GDPR compliance perspective, transfers could be linked to Data Protection Impact Assessments were required and data could be anonymised as part of the transfer process. Wizuda MFT enabled them to apply the latest security protocols for file transfers and encrypt data at rest and in transit. Passing cyber-security and GDPR compliance audits became a lot easier.

About Wizuda

Developing IT Solutions to Make Businesses Better

At Wizuda we focus on developing IT solutions which help businesses grow and empower people to collaborate and stay connected securely and compliantly. Specialists in secure data transfer since 2001, all development and support operations are carried out from our two Irish 

offices located in Dublin (Wizuda Headquarters) and Limerick. We pride ourselves in developing software solutions that allow organisations to take back control of their file transfer and data sharing operations, enabling them to operate efficiently, securely and compliantly

Quick Contact