SlideShare une entreprise Scribd logo

GDPR Considerations for IBM Connections

Télécharger en tant que PPTX, PDF
LetsConnect
LetsConnect

In EU there is a new data privacy regulation effective from May 2018. Organizations are required to comply with multiple requirements which affect also IBM Connections. In the session we will check how IBM Connections (on prem) meet the requirements of GDPR and what tool you might need to use.

Business
1  sur  44
Philadelphia, April 26-27 2018 13 GDPR Considerations for IBM Connections Jan Valdman, Whitesoft @jan_valdman
PLATINUM SPONSOR GOLD SPONSORS BRONZE SPONSORS GOLD PLUS SPONSOR SILVER SPONSORS SPEEDSPONSORING BEER SPONSOR
Social Connections 13 Philadelphia, April 26-27 2018 13 GDPR – What the hell it is?
Social Connections 13 Philadelphia, April 26-27 2018 EU regulation 2016/679 • Effective on May 28, 2018 • Regulates cross-border processing and limit recipients of personal information • Huge administrative fines • 2M Euro or 4 % or global annual turnover
Social Connections 13 Philadelphia, April 26-27 2018 Does GDPR Apply to Me? • Doing business in EU? • Having an office in EU? • Processing data of EU citizens? YES
Social Connections 13 Philadelphia, April 26-27 2018 Main GDPR terms • Data subject • Personal data • Controller • Processor • Consent • Lawfulness of processing • Safe processing
Social Connections 13 Philadelphia, April 26-27 2018 New duties for controllers and processors • Allow only lawful personal data processing • Inform data subjects about processing • Data protection by design and by default • Keep records of processing activities • Ensure security of processing • Notify data subject on defined occasions • Contract between controller and processor
Social Connections 13 Philadelphia, April 26-27 2018 New rights for subjects (articles 12-22) • Transparency • Right of access by the data subject • Right of rectification • Right to erasure (to be forgotten) • Right to restriction of processing • Right of data portability • Right to object • Automated individual decision making incl. profiling
Social Connections 13 Philadelphia, April 26-27 2018 13 GDPR vs. Privacy Shield
Social Connections 13 Philadelphia, April 26-27 2018 Privacy Shield • Successor of Safe Harbor, an agreement between EU and USA since August 2016 • US companies can do self-assessment and register at Federal Trade Commission • EU-approved “codex” which allows US companies to process data of EU citizens according to EU implementing decision 2016/1250
Social Connections 13 Philadelphia, April 26-27 2018 If you are Privacy Shield compliant • Then you are a safe destination for EU personal data • But you have still comply to the rest of requirements for … and processors • “Privacy Shield is a jumpstart to GDPR”
Social Connections 13 Philadelphia, April 26-27 2018 13 Running IBM Connections under GDPR – new duties
Social Connections 13 Philadelphia, April 26-27 2018 ESN vs Privacy • Not the best setup ever  • What personal data you process? • Profiles • The rest (user generated data) is equal to any shared drive • Which lawful reasons do you reference to? • Minimalize personal data processing (!!)
Social Connections 13 Philadelphia, April 26-27 2018 Identify what personal data you collect • Check attributes in Profiles • Coming from LDAP via VMM • Self entered by users • Automatic profiling: Social Network Graph • Add “technical” data • From IHS logs (IP addresses, mobile OS, …) • From WAS logs
Social Connections 13 Philadelphia, April 26-27 2018 Identify reasons for lawfulness of processing 1. Legitimate interest of the controller 2. Consent of the data subject • Onboarding manager (logon page) • Create records of processing activities
Social Connections 13 Philadelphia, April 26-27 2018 Identify processors or other recipients • Your IT suppliers (IBM business partner) • IBM support (for PMRs) • Your daughter/sister/mother companies • Work with your lawyers or DPO • Update your contracts according article 28
Social Connections 13 Philadelphia, April 26-27 2018 Inform subjects • Display required info somewhere • Log-on screen • Page header/footer
Social Connections 13 Philadelphia, April 26-27 2018 13 Security of Processing
Social Connections 13 Philadelphia, April 26-27 2018 What does it mean?
Social Connections 13 Philadelphia, April 26-27 2018 Secure the infrastructure • OS (passwords, firewall, updates, etc.) • WAS (encryption everywhere, roles, certs) • IC (role mappings, reverse proxy, APIs) • HIS (https configuration) • TDI (LDAP connection) • The pink stuff
Social Connections 13 Philadelphia, April 26-27 2018 Backup & restore • You do backups, right? • Now you must have DRP and regularly test it
Social Connections 13 Philadelphia, April 26-27 2018 Security audits • You are required to check your “secure processing” regularly
Social Connections 13 Philadelphia, April 26-27 2018 Problematic areas • Encryption of files on IC server (data at rest) is not possible • Consider also NFS sharing between IC, Docs, Search, Viewer • My drive – replication of files to desktops is not manageable • No insight who replicates what content to what computers
Social Connections 13 Philadelphia, April 26-27 2018 13 Coping with the rights of subject
Social Connections 13 Philadelphia, April 26-27 2018 Transparency • Usually no problem in B2E
Social Connections 13 Philadelphia, April 26-27 2018 Right of access • Users can easily access all their data in IBM Connections (people centric system)
Social Connections 13 Philadelphia, April 26-27 2018 Right to rectification • Potential issues in data pulled from enterprise databases via TDI • Not our problem 
Social Connections 13 Philadelphia, April 26-27 2018 Right to erasure - to be forgotten • We can delete/deactivate/rename users easily • @mentions can cause trouble • Check you IP arrangements with employees or other kinds of users
Social Connections 13 Philadelphia, April 26-27 2018 Right to restrict processing • This may be a potential issue how the organization uses and leverages content including personal data • Check well your Connections T&C for users
Social Connections 13 Philadelphia, April 26-27 2018 Right to data portability • Often referenced as “data takeout” • Does it make sense for ESN? • Export all personal data in a “common” format
Social Connections 13 Philadelphia, April 26-27 2018 Right to object • Not specifically related to any tool or technology
Social Connections 13 Philadelphia, April 26-27 2018 13 Audit tools (for Connections on premises)
Social Connections 13 Philadelphia, April 26-27 2018 Why we need them • Controllers (and processors) are required to keep records of processing activities and to be able to proof secure processing • Provide useful insight also in GDPR- unrelated situations • Demanded by our customer
Social Connections 13 Philadelphia, April 26-27 2018 What is available • Almost nothing • Vantage for IBM Connections by Actiance (discontinued?) • Customizable WAS logs + IHS logs • WAS auditing • IC databases
Social Connections 13 Philadelphia, April 26-27 2018 Related tools • panagenda Connections Expert (CE) + DataMiner • Infoware DPS and GDPR scanner?
Social Connections 13 Philadelphia, April 26-27 2018 Connections Audit Tools • We decided to build our own tool • It reads data from DB2 database • Provides information up to 12 months old • Supports Connections V5 - V6
Social Connections 13 Philadelphia, April 26-27 2018 Audit questions What is an overall system activity?
Social Connections 13 Philadelphia, April 26-27 2018 Audit questions What did an user do recently in Connections?
Social Connections 13 Philadelphia, April 26-27 2018
Social Connections 13 Philadelphia, April 26-27 2018 Audit questions Who accessed a given piece content?
Social Connections 13 Philadelphia, April 26-27 2018 Audit questions Is there any specific content?
Social Connections 13 Philadelphia, April 26-27 2018 Thank You! Jan Valdman jan.valdman@whitesoft.eu +420 603 590 152 Contact me if you want to learn more about WhiteCAT Many thanks to people who helped me to discuss and validate my findings and ideas.
PLATINUM SPONSOR GOLD SPONSORS BRONZE SPONSORS GOLD PLUS SPONSOR SILVER SPONSORS SPEEDSPONSORING BEER SPONSOR

Recommandé

Connections Worst Practises
Connections Worst PractisesConnections Worst Practises
Connections Worst Practises
Sharon James
 
Open Your Connections Toolbox! deploying the right tools in the right place f...
Open Your Connections Toolbox! deploying the right tools in the right place f...Open Your Connections Toolbox! deploying the right tools in the right place f...
Open Your Connections Toolbox! deploying the right tools in the right place f...
LetsConnect
 
Elasticsearch – Introducing New Containerized Metrics
Elasticsearch – Introducing New Containerized MetricsElasticsearch – Introducing New Containerized Metrics
Elasticsearch – Introducing New Containerized Metrics
LetsConnect
 
Breaking the Unwritten Rules to Help Your Users
Breaking the Unwritten Rules to Help Your UsersBreaking the Unwritten Rules to Help Your Users
Breaking the Unwritten Rules to Help Your Users
Keith Brooks
 
IBM Connections 6 Component Pack
IBM Connections 6 Component PackIBM Connections 6 Component Pack
IBM Connections 6 Component Pack
LetsConnect
 
Intelligent Collaboration driving Digital Transformation
Intelligent Collaboration driving Digital TransformationIntelligent Collaboration driving Digital Transformation
Intelligent Collaboration driving Digital Transformation
LetsConnect
 
Getting Smarter in Chicago
Getting Smarter in ChicagoGetting Smarter in Chicago
Getting Smarter in Chicago
Daniel X. O'Neil
 
Announcing the Connections Cloud Catalog: How to Get new Apps fresh out of th...
Announcing the Connections Cloud Catalog: How to Get new Apps fresh out of th...Announcing the Connections Cloud Catalog: How to Get new Apps fresh out of th...
Announcing the Connections Cloud Catalog: How to Get new Apps fresh out of th...
LetsConnect
 

Recommandé

Connections Worst Practises
Connections Worst PractisesConnections Worst Practises
Connections Worst Practises
Sharon James
 
Open Your Connections Toolbox! deploying the right tools in the right place f...
Open Your Connections Toolbox! deploying the right tools in the right place f...Open Your Connections Toolbox! deploying the right tools in the right place f...
Open Your Connections Toolbox! deploying the right tools in the right place f...
LetsConnect
 
Elasticsearch – Introducing New Containerized Metrics
Elasticsearch – Introducing New Containerized MetricsElasticsearch – Introducing New Containerized Metrics
Elasticsearch – Introducing New Containerized Metrics
LetsConnect
 
Breaking the Unwritten Rules to Help Your Users
Breaking the Unwritten Rules to Help Your UsersBreaking the Unwritten Rules to Help Your Users
Breaking the Unwritten Rules to Help Your Users
Keith Brooks
 
IBM Connections 6 Component Pack
IBM Connections 6 Component PackIBM Connections 6 Component Pack
IBM Connections 6 Component Pack
LetsConnect
 
Intelligent Collaboration driving Digital Transformation
Intelligent Collaboration driving Digital TransformationIntelligent Collaboration driving Digital Transformation
Intelligent Collaboration driving Digital Transformation
LetsConnect
 
Getting Smarter in Chicago
Getting Smarter in ChicagoGetting Smarter in Chicago
Getting Smarter in Chicago
Daniel X. O'Neil
 
Announcing the Connections Cloud Catalog: How to Get new Apps fresh out of th...
Announcing the Connections Cloud Catalog: How to Get new Apps fresh out of th...Announcing the Connections Cloud Catalog: How to Get new Apps fresh out of th...
Announcing the Connections Cloud Catalog: How to Get new Apps fresh out of th...
LetsConnect
 
Calling all Developers: Building Connections Apps and Integrating with Pink
Calling all Developers: Building Connections Apps and Integrating with PinkCalling all Developers: Building Connections Apps and Integrating with Pink
Calling all Developers: Building Connections Apps and Integrating with Pink
LetsConnect
 
New Ways to Deliver Business Outcomes with INtelligent Workstream Collaboration
New Ways to Deliver Business Outcomes with INtelligent Workstream CollaborationNew Ways to Deliver Business Outcomes with INtelligent Workstream Collaboration
New Ways to Deliver Business Outcomes with INtelligent Workstream Collaboration
LetsConnect
 
Make share point the heart of your information 3 ways to extend your investment
Make share point the heart of your information 3 ways to extend your investmentMake share point the heart of your information 3 ways to extend your investment
Make share point the heart of your information 3 ways to extend your investment
Jim Merrifield, IGP, CIP
 
You Get What You Give
You Get What You GiveYou Get What You Give
You Get What You Give
LetsConnect
 
SAP Transformation Empowerment with LeanIX: 3 Real-World Use Cases
SAP Transformation Empowerment with LeanIX: 3 Real-World Use CasesSAP Transformation Empowerment with LeanIX: 3 Real-World Use Cases
SAP Transformation Empowerment with LeanIX: 3 Real-World Use Cases
LeanIX GmbH
 
The Pink road – Dorothy’s journey through an all pink wonderland
The Pink road – Dorothy’s journey through an all pink wonderlandThe Pink road – Dorothy’s journey through an all pink wonderland
The Pink road – Dorothy’s journey through an all pink wonderland
LetsConnect
 
Using ibm connections to enhance university courses
Using ibm connections to enhance university coursesUsing ibm connections to enhance university courses
Using ibm connections to enhance university courses
LetsConnect
 
Lean EAM with the Microservices Add-on and the Signavio Integration
Lean EAM with the Microservices Add-on and the Signavio IntegrationLean EAM with the Microservices Add-on and the Signavio Integration
Lean EAM with the Microservices Add-on and the Signavio Integration
LeanIX GmbH
 
Social Connections 12. We hired hackers to hack us
Social Connections 12. We hired hackers to hack usSocial Connections 12. We hired hackers to hack us
Social Connections 12. We hired hackers to hack us
Robert Farstad
 
Custom Reports & Integrations with GraphQL
Custom Reports & Integrations with GraphQLCustom Reports & Integrations with GraphQL
Custom Reports & Integrations with GraphQL
LeanIX GmbH
 
The LeanIX Microservices Integration
The LeanIX Microservices IntegrationThe LeanIX Microservices Integration
The LeanIX Microservices Integration
LeanIX GmbH
 
SharePoint Saturday Louisville 2012
SharePoint Saturday Louisville 2012SharePoint Saturday Louisville 2012
SharePoint Saturday Louisville 2012
Scott_Brickey
 
Design for the Digital Workspace
Design for the Digital WorkspaceDesign for the Digital Workspace
Design for the Digital Workspace
LetsConnect
 
LeanIX introduction_pathfinder_v2
LeanIX introduction_pathfinder_v2LeanIX introduction_pathfinder_v2
LeanIX introduction_pathfinder_v2
LeanIX GmbH
 
20180901 - 9th Meeting - Power BI Module 0-1
20180901 - 9th Meeting - Power BI Module 0-120180901 - 9th Meeting - Power BI Module 0-1
20180901 - 9th Meeting - Power BI Module 0-1
Duc Lai Trung Minh
 
Interface Fact Sheets in LeanIX Enterprise Architecture Management
Interface Fact Sheets in LeanIX Enterprise Architecture ManagementInterface Fact Sheets in LeanIX Enterprise Architecture Management
Interface Fact Sheets in LeanIX Enterprise Architecture Management
LeanIX GmbH
 
GraphQL in LeanIX Enterprise Architecture Management @ Bonnagile Meetup
GraphQL in LeanIX Enterprise Architecture Management @ Bonnagile MeetupGraphQL in LeanIX Enterprise Architecture Management @ Bonnagile Meetup
GraphQL in LeanIX Enterprise Architecture Management @ Bonnagile Meetup
LeanIX GmbH
 
Visualization of Enterprise Architecture Data
Visualization of Enterprise Architecture DataVisualization of Enterprise Architecture Data
Visualization of Enterprise Architecture Data
LeanIX GmbH
 
Sharepoint 2013 migration from sdl tridion 2011
Sharepoint 2013 migration from sdl tridion 2011Sharepoint 2013 migration from sdl tridion 2011
Sharepoint 2013 migration from sdl tridion 2011
Chakrapani ramachandran
 
Enterprise & IT Architecture Management User Guide with LeanIX
Enterprise & IT Architecture Management User Guide with LeanIXEnterprise & IT Architecture Management User Guide with LeanIX
Enterprise & IT Architecture Management User Guide with LeanIX
LeanIX GmbH
 
How To Approach GDPR Preparation & Discovery
How To Approach GDPR Preparation & DiscoveryHow To Approach GDPR Preparation & Discovery
How To Approach GDPR Preparation & Discovery
Gabriella Davis
 
A Key to Real-time Insights in a Post-COVID World (ASEAN)
A Key to Real-time Insights in a Post-COVID World (ASEAN)A Key to Real-time Insights in a Post-COVID World (ASEAN)
A Key to Real-time Insights in a Post-COVID World (ASEAN)
Denodo
 

Contenu connexe

Tendances

Calling all Developers: Building Connections Apps and Integrating with Pink
Calling all Developers: Building Connections Apps and Integrating with PinkCalling all Developers: Building Connections Apps and Integrating with Pink
Calling all Developers: Building Connections Apps and Integrating with Pink
LetsConnect
 
New Ways to Deliver Business Outcomes with INtelligent Workstream Collaboration
New Ways to Deliver Business Outcomes with INtelligent Workstream CollaborationNew Ways to Deliver Business Outcomes with INtelligent Workstream Collaboration
New Ways to Deliver Business Outcomes with INtelligent Workstream Collaboration
LetsConnect
 
GraphQL in LeanIX Enterprise Architecture Management @ Bonnagile Meetup
GraphQL in LeanIX Enterprise Architecture Management @ Bonnagile MeetupGraphQL in LeanIX Enterprise Architecture Management @ Bonnagile Meetup
GraphQL in LeanIX Enterprise Architecture Management @ Bonnagile Meetup
LeanIX GmbH
 
Visualization of Enterprise Architecture Data
Visualization of Enterprise Architecture DataVisualization of Enterprise Architecture Data
Visualization of Enterprise Architecture Data
LeanIX GmbH
 
Sharepoint 2013 migration from sdl tridion 2011
Sharepoint 2013 migration from sdl tridion 2011Sharepoint 2013 migration from sdl tridion 2011
Sharepoint 2013 migration from sdl tridion 2011
Chakrapani ramachandran
 

Tendances (20)

Calling all Developers: Building Connections Apps and Integrating with Pink
Calling all Developers: Building Connections Apps and Integrating with PinkCalling all Developers: Building Connections Apps and Integrating with Pink
Calling all Developers: Building Connections Apps and Integrating with Pink
 
New Ways to Deliver Business Outcomes with INtelligent Workstream Collaboration
New Ways to Deliver Business Outcomes with INtelligent Workstream CollaborationNew Ways to Deliver Business Outcomes with INtelligent Workstream Collaboration
New Ways to Deliver Business Outcomes with INtelligent Workstream Collaboration
 
Make share point the heart of your information 3 ways to extend your investment
Make share point the heart of your information 3 ways to extend your investmentMake share point the heart of your information 3 ways to extend your investment
Make share point the heart of your information 3 ways to extend your investment
 
You Get What You Give
You Get What You GiveYou Get What You Give
You Get What You Give
 
SAP Transformation Empowerment with LeanIX: 3 Real-World Use Cases
SAP Transformation Empowerment with LeanIX: 3 Real-World Use CasesSAP Transformation Empowerment with LeanIX: 3 Real-World Use Cases
SAP Transformation Empowerment with LeanIX: 3 Real-World Use Cases
 
The Pink road – Dorothy’s journey through an all pink wonderland
The Pink road – Dorothy’s journey through an all pink wonderlandThe Pink road – Dorothy’s journey through an all pink wonderland
The Pink road – Dorothy’s journey through an all pink wonderland
 
Using ibm connections to enhance university courses
Using ibm connections to enhance university coursesUsing ibm connections to enhance university courses
Using ibm connections to enhance university courses
 
Lean EAM with the Microservices Add-on and the Signavio Integration
Lean EAM with the Microservices Add-on and the Signavio IntegrationLean EAM with the Microservices Add-on and the Signavio Integration
Lean EAM with the Microservices Add-on and the Signavio Integration
 
Social Connections 12. We hired hackers to hack us
Social Connections 12. We hired hackers to hack usSocial Connections 12. We hired hackers to hack us
Social Connections 12. We hired hackers to hack us
 
Custom Reports & Integrations with GraphQL
Custom Reports & Integrations with GraphQLCustom Reports & Integrations with GraphQL
Custom Reports & Integrations with GraphQL
 
The LeanIX Microservices Integration
The LeanIX Microservices IntegrationThe LeanIX Microservices Integration
The LeanIX Microservices Integration
 
SharePoint Saturday Louisville 2012
SharePoint Saturday Louisville 2012SharePoint Saturday Louisville 2012
SharePoint Saturday Louisville 2012
 
Design for the Digital Workspace
Design for the Digital WorkspaceDesign for the Digital Workspace
Design for the Digital Workspace
 
LeanIX introduction_pathfinder_v2
LeanIX introduction_pathfinder_v2LeanIX introduction_pathfinder_v2
LeanIX introduction_pathfinder_v2
 
20180901 - 9th Meeting - Power BI Module 0-1
20180901 - 9th Meeting - Power BI Module 0-120180901 - 9th Meeting - Power BI Module 0-1
20180901 - 9th Meeting - Power BI Module 0-1
 
Interface Fact Sheets in LeanIX Enterprise Architecture Management
Interface Fact Sheets in LeanIX Enterprise Architecture ManagementInterface Fact Sheets in LeanIX Enterprise Architecture Management
Interface Fact Sheets in LeanIX Enterprise Architecture Management
 
GraphQL in LeanIX Enterprise Architecture Management @ Bonnagile Meetup
GraphQL in LeanIX Enterprise Architecture Management @ Bonnagile MeetupGraphQL in LeanIX Enterprise Architecture Management @ Bonnagile Meetup
GraphQL in LeanIX Enterprise Architecture Management @ Bonnagile Meetup
 
Visualization of Enterprise Architecture Data
Visualization of Enterprise Architecture DataVisualization of Enterprise Architecture Data
Visualization of Enterprise Architecture Data
 
Sharepoint 2013 migration from sdl tridion 2011
Sharepoint 2013 migration from sdl tridion 2011Sharepoint 2013 migration from sdl tridion 2011
Sharepoint 2013 migration from sdl tridion 2011
 
Enterprise & IT Architecture Management User Guide with LeanIX
Enterprise & IT Architecture Management User Guide with LeanIXEnterprise & IT Architecture Management User Guide with LeanIX
Enterprise & IT Architecture Management User Guide with LeanIX
 

Similaire à GDPR Considerations for IBM Connections

A Key to Real-time Insights in a Post-COVID World (ASEAN)
A Key to Real-time Insights in a Post-COVID World (ASEAN)A Key to Real-time Insights in a Post-COVID World (ASEAN)
A Key to Real-time Insights in a Post-COVID World (ASEAN)
Denodo
 
Computer Generations and Complexity: The Necessity for Collaboration
Computer Generations and Complexity: The Necessity for CollaborationComputer Generations and Complexity: The Necessity for Collaboration
Computer Generations and Complexity: The Necessity for Collaboration
LetsConnect
 
GDPR Noncompliance: Avoid the Risk with Data Virtualization
GDPR Noncompliance: Avoid the Risk with Data VirtualizationGDPR Noncompliance: Avoid the Risk with Data Virtualization
GDPR Noncompliance: Avoid the Risk with Data Virtualization
Denodo
 
Advanced Analytics and Machine Learning with Data Virtualization
Advanced Analytics and Machine Learning with Data VirtualizationAdvanced Analytics and Machine Learning with Data Virtualization
Advanced Analytics and Machine Learning with Data Virtualization
Denodo
 
Secure Your Web Applications and Achieve Compliance
Secure Your Web Applications and Achieve Compliance Secure Your Web Applications and Achieve Compliance
Secure Your Web Applications and Achieve Compliance
Avi Networks
 
How to Place Data at the Center of Digital Transformation in BFSI
How to Place Data at the Center of Digital Transformation in BFSIHow to Place Data at the Center of Digital Transformation in BFSI
How to Place Data at the Center of Digital Transformation in BFSI
Denodo
 
¿En qué se parece el Gobierno del Dato a un parque de atracciones?
¿En qué se parece el Gobierno del Dato a un parque de atracciones?¿En qué se parece el Gobierno del Dato a un parque de atracciones?
¿En qué se parece el Gobierno del Dato a un parque de atracciones?
Denodo
 
Rencore Webinar: Understanding EU GDPR from an Office 365 perspective with Pa...
Rencore Webinar: Understanding EU GDPR from an Office 365 perspective with Pa...Rencore Webinar: Understanding EU GDPR from an Office 365 perspective with Pa...
Rencore Webinar: Understanding EU GDPR from an Office 365 perspective with Pa...
Rencore
 
A Successful Data Strategy for Insurers in Volatile Times (EMEA)
A Successful Data Strategy for Insurers in Volatile Times (EMEA)A Successful Data Strategy for Insurers in Volatile Times (EMEA)
A Successful Data Strategy for Insurers in Volatile Times (EMEA)
Denodo
 
A Logical Architecture is Always a Flexible Architecture (ASEAN)
A Logical Architecture is Always a Flexible Architecture (ASEAN)A Logical Architecture is Always a Flexible Architecture (ASEAN)
A Logical Architecture is Always a Flexible Architecture (ASEAN)
Denodo
 
DAMA & Denodo Webinar: Modernizing Data Architecture Using Data Virtualization
DAMA & Denodo Webinar: Modernizing Data Architecture Using Data Virtualization DAMA & Denodo Webinar: Modernizing Data Architecture Using Data Virtualization
DAMA & Denodo Webinar: Modernizing Data Architecture Using Data Virtualization
Denodo
 
Improve IT Security and Compliance with Mainframe Data in Splunk
Improve IT Security and Compliance with Mainframe Data in SplunkImprove IT Security and Compliance with Mainframe Data in Splunk
Improve IT Security and Compliance with Mainframe Data in Splunk
Precisely
 
Data Virtualization. An Introduction (ASEAN)
Data Virtualization. An Introduction (ASEAN)Data Virtualization. An Introduction (ASEAN)
Data Virtualization. An Introduction (ASEAN)
Denodo
 

Similaire à GDPR Considerations for IBM Connections (20)

How To Approach GDPR Preparation & Discovery
How To Approach GDPR Preparation & DiscoveryHow To Approach GDPR Preparation & Discovery
How To Approach GDPR Preparation & Discovery
 
A Key to Real-time Insights in a Post-COVID World (ASEAN)
A Key to Real-time Insights in a Post-COVID World (ASEAN)A Key to Real-time Insights in a Post-COVID World (ASEAN)
A Key to Real-time Insights in a Post-COVID World (ASEAN)
 
Computer Generations and Complexity: The Necessity for Collaboration
Computer Generations and Complexity: The Necessity for CollaborationComputer Generations and Complexity: The Necessity for Collaboration
Computer Generations and Complexity: The Necessity for Collaboration
 
Oil and gas big data edition
Oil and gas big data editionOil and gas big data edition
Oil and gas big data edition
 
GDPR Noncompliance: Avoid the Risk with Data Virtualization
GDPR Noncompliance: Avoid the Risk with Data VirtualizationGDPR Noncompliance: Avoid the Risk with Data Virtualization
GDPR Noncompliance: Avoid the Risk with Data Virtualization
 
Personal Data Receipts - Michele Nati - Lead Technologist Privacy and Trust -...
Personal Data Receipts - Michele Nati - Lead Technologist Privacy and Trust -...Personal Data Receipts - Michele Nati - Lead Technologist Privacy and Trust -...
Personal Data Receipts - Michele Nati - Lead Technologist Privacy and Trust -...
 
Advanced Analytics and Machine Learning with Data Virtualization
Advanced Analytics and Machine Learning with Data VirtualizationAdvanced Analytics and Machine Learning with Data Virtualization
Advanced Analytics and Machine Learning with Data Virtualization
 
Secure Your Web Applications and Achieve Compliance
Secure Your Web Applications and Achieve Compliance Secure Your Web Applications and Achieve Compliance
Secure Your Web Applications and Achieve Compliance
 
How to Place Data at the Center of Digital Transformation in BFSI
How to Place Data at the Center of Digital Transformation in BFSIHow to Place Data at the Center of Digital Transformation in BFSI
How to Place Data at the Center of Digital Transformation in BFSI
 
Soccnx13 Integrate Salesforce and IBM Connections
Soccnx13 Integrate Salesforce and IBM ConnectionsSoccnx13 Integrate Salesforce and IBM Connections
Soccnx13 Integrate Salesforce and IBM Connections
 
An Introduction to Graph: Database, Analytics, and Cloud Services
An Introduction to Graph: Database, Analytics, and Cloud ServicesAn Introduction to Graph: Database, Analytics, and Cloud Services
An Introduction to Graph: Database, Analytics, and Cloud Services
 
¿En qué se parece el Gobierno del Dato a un parque de atracciones?
¿En qué se parece el Gobierno del Dato a un parque de atracciones?¿En qué se parece el Gobierno del Dato a un parque de atracciones?
¿En qué se parece el Gobierno del Dato a un parque de atracciones?
 
Rencore Webinar: Understanding EU GDPR from an Office 365 perspective with Pa...
Rencore Webinar: Understanding EU GDPR from an Office 365 perspective with Pa...Rencore Webinar: Understanding EU GDPR from an Office 365 perspective with Pa...
Rencore Webinar: Understanding EU GDPR from an Office 365 perspective with Pa...
 
A Successful Data Strategy for Insurers in Volatile Times (EMEA)
A Successful Data Strategy for Insurers in Volatile Times (EMEA)A Successful Data Strategy for Insurers in Volatile Times (EMEA)
A Successful Data Strategy for Insurers in Volatile Times (EMEA)
 
Watson Workspace vs. Other Team Collaboration Tools (Teams, Slack, Spark, etc.)
Watson Workspace vs. Other Team Collaboration Tools (Teams, Slack, Spark, etc.)Watson Workspace vs. Other Team Collaboration Tools (Teams, Slack, Spark, etc.)
Watson Workspace vs. Other Team Collaboration Tools (Teams, Slack, Spark, etc.)
 
A Logical Architecture is Always a Flexible Architecture (ASEAN)
A Logical Architecture is Always a Flexible Architecture (ASEAN)A Logical Architecture is Always a Flexible Architecture (ASEAN)
A Logical Architecture is Always a Flexible Architecture (ASEAN)
 
Denodo: Enabling a Data Mesh Architecture and Data Sharing Culture at Landsba...
Denodo: Enabling a Data Mesh Architecture and Data Sharing Culture at Landsba...Denodo: Enabling a Data Mesh Architecture and Data Sharing Culture at Landsba...
Denodo: Enabling a Data Mesh Architecture and Data Sharing Culture at Landsba...
 
DAMA & Denodo Webinar: Modernizing Data Architecture Using Data Virtualization
DAMA & Denodo Webinar: Modernizing Data Architecture Using Data Virtualization DAMA & Denodo Webinar: Modernizing Data Architecture Using Data Virtualization
DAMA & Denodo Webinar: Modernizing Data Architecture Using Data Virtualization
 
Improve IT Security and Compliance with Mainframe Data in Splunk
Improve IT Security and Compliance with Mainframe Data in SplunkImprove IT Security and Compliance with Mainframe Data in Splunk
Improve IT Security and Compliance with Mainframe Data in Splunk
 
Data Virtualization. An Introduction (ASEAN)
Data Virtualization. An Introduction (ASEAN)Data Virtualization. An Introduction (ASEAN)
Data Virtualization. An Introduction (ASEAN)
 

Plus de LetsConnect

Oh $h@# - How to deal with emotional outbursts and hate in social situations
Oh $h@# - How to deal with emotional outbursts and hate in social situationsOh $h@# - How to deal with emotional outbursts and hate in social situations
Oh $h@# - How to deal with emotional outbursts and hate in social situations
LetsConnect
 
It is not About Connections vs Office 365 - You can have the best of the both...
It is not About Connections vs Office 365 - You can have the best of the both...It is not About Connections vs Office 365 - You can have the best of the both...
It is not About Connections vs Office 365 - You can have the best of the both...
LetsConnect
 
IBM Collaboration Framework in action: Customer success stories
IBM Collaboration Framework in action: Customer success storiesIBM Collaboration Framework in action: Customer success stories
IBM Collaboration Framework in action: Customer success stories
LetsConnect
 

Plus de LetsConnect (20)

Installing Component Pack 6.0.0.6
Installing Component Pack 6.0.0.6Installing Component Pack 6.0.0.6
Installing Component Pack 6.0.0.6
 
Oh $h@# - How to deal with emotional outbursts and hate in social situations
Oh $h@# - How to deal with emotional outbursts and hate in social situationsOh $h@# - How to deal with emotional outbursts and hate in social situations
Oh $h@# - How to deal with emotional outbursts and hate in social situations
 
It is not About Connections vs Office 365 - You can have the best of the both...
It is not About Connections vs Office 365 - You can have the best of the both...It is not About Connections vs Office 365 - You can have the best of the both...
It is not About Connections vs Office 365 - You can have the best of the both...
 
IBM Connections 6.0 CR3 New Features
IBM Connections 6.0 CR3 New FeaturesIBM Connections 6.0 CR3 New Features
IBM Connections 6.0 CR3 New Features
 
10 years of IBM Connections
10 years of IBM Connections10 years of IBM Connections
10 years of IBM Connections
 
IBM Collaboration Framework in action: Customer success stories
IBM Collaboration Framework in action: Customer success storiesIBM Collaboration Framework in action: Customer success stories
IBM Collaboration Framework in action: Customer success stories
 
Power up your Salesforce Opportunities by using IBM Watson Workspace as your ...
Power up your Salesforce Opportunities by using IBM Watson Workspace as your ...Power up your Salesforce Opportunities by using IBM Watson Workspace as your ...
Power up your Salesforce Opportunities by using IBM Watson Workspace as your ...
 
There is nothing more practical than a good theory
There is nothing more practical than a good theoryThere is nothing more practical than a good theory
There is nothing more practical than a good theory
 
Kubernetes Basics for Connections Admins
Kubernetes Basics for Connections AdminsKubernetes Basics for Connections Admins
Kubernetes Basics for Connections Admins
 
Developing IBM Connections Community Apps using Domino
Developing IBM Connections Community Apps using DominoDeveloping IBM Connections Community Apps using Domino
Developing IBM Connections Community Apps using Domino
 
IBM Connections - Have it YOUR Way!
IBM Connections - Have it YOUR Way!IBM Connections - Have it YOUR Way!
IBM Connections - Have it YOUR Way!
 
Building Custom ibm Watson Workspace Templates to make you and your team more...
Building Custom ibm Watson Workspace Templates to make you and your team more...Building Custom ibm Watson Workspace Templates to make you and your team more...
Building Custom ibm Watson Workspace Templates to make you and your team more...
 
ICS INtegration with Node-RED and Open Source
ICS INtegration with Node-RED and Open SourceICS INtegration with Node-RED and Open Source
ICS INtegration with Node-RED and Open Source
 
Communities as the fundament of social learning
Communities as the fundament of social learningCommunities as the fundament of social learning
Communities as the fundament of social learning
 
It's not IBM or O365 - Integrate and Embrace
It's not IBM or O365 - Integrate and EmbraceIt's not IBM or O365 - Integrate and Embrace
It's not IBM or O365 - Integrate and Embrace
 
Running Microservices in Production with IBM
Running Microservices in Production with IBMRunning Microservices in Production with IBM
Running Microservices in Production with IBM
 
Social business Fireside Chat with Frank Nestler
Social business Fireside Chat with Frank NestlerSocial business Fireside Chat with Frank Nestler
Social business Fireside Chat with Frank Nestler
 
Learning to Tell the Watson Workspace Story
Learning to Tell the Watson Workspace StoryLearning to Tell the Watson Workspace Story
Learning to Tell the Watson Workspace Story
 
IBM Connections - The One Social Layer to Rule Them All
IBM Connections - The One Social Layer to Rule Them AllIBM Connections - The One Social Layer to Rule Them All
IBM Connections - The One Social Layer to Rule Them All
 
Exploring a simpler, more portable, less overhead solution to deploy Elastics...
Exploring a simpler, more portable, less overhead solution to deploy Elastics...Exploring a simpler, more portable, less overhead solution to deploy Elastics...
Exploring a simpler, more portable, less overhead solution to deploy Elastics...
 

Dernier

(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7
(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7
(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7
Call Girls in Nagpur High Profile Call Girls
 
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabiunwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
Abortion pills in Kuwait Cytotec pills in Kuwait
 
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
Sheetaleventcompany
 
FULL ENJOY Call Girls In Mahipalpur Delhi Contact Us 8377877756
FULL ENJOY Call Girls In Mahipalpur Delhi Contact Us 8377877756FULL ENJOY Call Girls In Mahipalpur Delhi Contact Us 8377877756
FULL ENJOY Call Girls In Mahipalpur Delhi Contact Us 8377877756
dollysharma2066
 
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
dlhescort
 
Uneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration PresentationUneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration Presentation
uneakwhite
 
The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...
The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...
The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...
Aggregage
 
Call Now ☎️🔝 9332606886🔝 Call Girls ❤ Service In Bhilwara Female Escorts Serv...
Call Now ☎️🔝 9332606886🔝 Call Girls ❤ Service In Bhilwara Female Escorts Serv...Call Now ☎️🔝 9332606886🔝 Call Girls ❤ Service In Bhilwara Female Escorts Serv...
Call Now ☎️🔝 9332606886🔝 Call Girls ❤ Service In Bhilwara Female Escorts Serv...
Anamikakaur10
 
Malegaon Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort Service
Malegaon Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort ServiceMalegaon Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort Service
Malegaon Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort Service
Damini Dixit
 
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
amitlee9823
 
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
lizamodels9
 

Dernier (20)

(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7
(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7
(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7
 
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabiunwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
 
Falcon Invoice Discounting: The best investment platform in india for investors
Falcon Invoice Discounting: The best investment platform in india for investorsFalcon Invoice Discounting: The best investment platform in india for investors
Falcon Invoice Discounting: The best investment platform in india for investors
 
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
 
Value Proposition canvas- Customer needs and pains
Value Proposition canvas- Customer needs and painsValue Proposition canvas- Customer needs and pains
Value Proposition canvas- Customer needs and pains
 
PHX May 2024 Corporate Presentation Final
PHX May 2024 Corporate Presentation FinalPHX May 2024 Corporate Presentation Final
PHX May 2024 Corporate Presentation Final
 
Falcon's Invoice Discounting: Your Path to Prosperity
Falcon's Invoice Discounting: Your Path to ProsperityFalcon's Invoice Discounting: Your Path to Prosperity
Falcon's Invoice Discounting: Your Path to Prosperity
 
SEO Case Study: How I Increased SEO Traffic & Ranking by 50-60% in 6 Months
SEO Case Study: How I Increased SEO Traffic & Ranking by 50-60% in 6 MonthsSEO Case Study: How I Increased SEO Traffic & Ranking by 50-60% in 6 Months
SEO Case Study: How I Increased SEO Traffic & Ranking by 50-60% in 6 Months
 
FULL ENJOY Call Girls In Mahipalpur Delhi Contact Us 8377877756
FULL ENJOY Call Girls In Mahipalpur Delhi Contact Us 8377877756FULL ENJOY Call Girls In Mahipalpur Delhi Contact Us 8377877756
FULL ENJOY Call Girls In Mahipalpur Delhi Contact Us 8377877756
 
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
 
Uneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration PresentationUneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration Presentation
 
Cheap Rate Call Girls In Noida Sector 62 Metro 959961乂3876
Cheap Rate Call Girls In Noida Sector 62 Metro 959961乂3876Cheap Rate Call Girls In Noida Sector 62 Metro 959961乂3876
Cheap Rate Call Girls In Noida Sector 62 Metro 959961乂3876
 
The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...
The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...
The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...
 
Phases of Negotiation .pptx
Phases of Negotiation .pptx Phases of Negotiation .pptx
Phases of Negotiation .pptx
 
Falcon Invoice Discounting platform in india
Falcon Invoice Discounting platform in indiaFalcon Invoice Discounting platform in india
Falcon Invoice Discounting platform in india
 
Call Now ☎️🔝 9332606886🔝 Call Girls ❤ Service In Bhilwara Female Escorts Serv...
Call Now ☎️🔝 9332606886🔝 Call Girls ❤ Service In Bhilwara Female Escorts Serv...Call Now ☎️🔝 9332606886🔝 Call Girls ❤ Service In Bhilwara Female Escorts Serv...
Call Now ☎️🔝 9332606886🔝 Call Girls ❤ Service In Bhilwara Female Escorts Serv...
 
Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...
Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...
Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...
 
Malegaon Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort Service
Malegaon Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort ServiceMalegaon Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort Service
Malegaon Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort Service
 
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
 
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
 

GDPR Considerations for IBM Connections

  • 1. Philadelphia, April 26-27 2018 13 GDPR Considerations for IBM Connections Jan Valdman, Whitesoft @jan_valdman
  • 2. PLATINUM SPONSOR GOLD SPONSORS BRONZE SPONSORS GOLD PLUS SPONSOR SILVER SPONSORS SPEEDSPONSORING BEER SPONSOR
  • 3. Social Connections 13 Philadelphia, April 26-27 2018 13 GDPR – What the hell it is?
  • 4. Social Connections 13 Philadelphia, April 26-27 2018 EU regulation 2016/679 • Effective on May 28, 2018 • Regulates cross-border processing and limit recipients of personal information • Huge administrative fines • 2M Euro or 4 % or global annual turnover
  • 5. Social Connections 13 Philadelphia, April 26-27 2018 Does GDPR Apply to Me? • Doing business in EU? • Having an office in EU? • Processing data of EU citizens? YES
  • 6. Social Connections 13 Philadelphia, April 26-27 2018 Main GDPR terms • Data subject • Personal data • Controller • Processor • Consent • Lawfulness of processing • Safe processing
  • 7. Social Connections 13 Philadelphia, April 26-27 2018 New duties for controllers and processors • Allow only lawful personal data processing • Inform data subjects about processing • Data protection by design and by default • Keep records of processing activities • Ensure security of processing • Notify data subject on defined occasions • Contract between controller and processor
  • 8. Social Connections 13 Philadelphia, April 26-27 2018 New rights for subjects (articles 12-22) • Transparency • Right of access by the data subject • Right of rectification • Right to erasure (to be forgotten) • Right to restriction of processing • Right of data portability • Right to object • Automated individual decision making incl. profiling
  • 9. Social Connections 13 Philadelphia, April 26-27 2018 13 GDPR vs. Privacy Shield
  • 10. Social Connections 13 Philadelphia, April 26-27 2018 Privacy Shield • Successor of Safe Harbor, an agreement between EU and USA since August 2016 • US companies can do self-assessment and register at Federal Trade Commission • EU-approved “codex” which allows US companies to process data of EU citizens according to EU implementing decision 2016/1250
  • 11. Social Connections 13 Philadelphia, April 26-27 2018 If you are Privacy Shield compliant • Then you are a safe destination for EU personal data • But you have still comply to the rest of requirements for … and processors • “Privacy Shield is a jumpstart to GDPR”
  • 12. Social Connections 13 Philadelphia, April 26-27 2018 13 Running IBM Connections under GDPR – new duties
  • 13. Social Connections 13 Philadelphia, April 26-27 2018 ESN vs Privacy • Not the best setup ever  • What personal data you process? • Profiles • The rest (user generated data) is equal to any shared drive • Which lawful reasons do you reference to? • Minimalize personal data processing (!!)
  • 14. Social Connections 13 Philadelphia, April 26-27 2018 Identify what personal data you collect • Check attributes in Profiles • Coming from LDAP via VMM • Self entered by users • Automatic profiling: Social Network Graph • Add “technical” data • From IHS logs (IP addresses, mobile OS, …) • From WAS logs
  • 15. Social Connections 13 Philadelphia, April 26-27 2018 Identify reasons for lawfulness of processing 1. Legitimate interest of the controller 2. Consent of the data subject • Onboarding manager (logon page) • Create records of processing activities
  • 16. Social Connections 13 Philadelphia, April 26-27 2018 Identify processors or other recipients • Your IT suppliers (IBM business partner) • IBM support (for PMRs) • Your daughter/sister/mother companies • Work with your lawyers or DPO • Update your contracts according article 28
  • 17. Social Connections 13 Philadelphia, April 26-27 2018 Inform subjects • Display required info somewhere • Log-on screen • Page header/footer
  • 18. Social Connections 13 Philadelphia, April 26-27 2018 13 Security of Processing
  • 19. Social Connections 13 Philadelphia, April 26-27 2018 What does it mean?
  • 20. Social Connections 13 Philadelphia, April 26-27 2018 Secure the infrastructure • OS (passwords, firewall, updates, etc.) • WAS (encryption everywhere, roles, certs) • IC (role mappings, reverse proxy, APIs) • HIS (https configuration) • TDI (LDAP connection) • The pink stuff
  • 21. Social Connections 13 Philadelphia, April 26-27 2018 Backup & restore • You do backups, right? • Now you must have DRP and regularly test it
  • 22. Social Connections 13 Philadelphia, April 26-27 2018 Security audits • You are required to check your “secure processing” regularly
  • 23. Social Connections 13 Philadelphia, April 26-27 2018 Problematic areas • Encryption of files on IC server (data at rest) is not possible • Consider also NFS sharing between IC, Docs, Search, Viewer • My drive – replication of files to desktops is not manageable • No insight who replicates what content to what computers
  • 24. Social Connections 13 Philadelphia, April 26-27 2018 13 Coping with the rights of subject
  • 25. Social Connections 13 Philadelphia, April 26-27 2018 Transparency • Usually no problem in B2E
  • 26. Social Connections 13 Philadelphia, April 26-27 2018 Right of access • Users can easily access all their data in IBM Connections (people centric system)
  • 27. Social Connections 13 Philadelphia, April 26-27 2018 Right to rectification • Potential issues in data pulled from enterprise databases via TDI • Not our problem 
  • 28. Social Connections 13 Philadelphia, April 26-27 2018 Right to erasure - to be forgotten • We can delete/deactivate/rename users easily • @mentions can cause trouble • Check you IP arrangements with employees or other kinds of users
  • 29. Social Connections 13 Philadelphia, April 26-27 2018 Right to restrict processing • This may be a potential issue how the organization uses and leverages content including personal data • Check well your Connections T&C for users
  • 30. Social Connections 13 Philadelphia, April 26-27 2018 Right to data portability • Often referenced as “data takeout” • Does it make sense for ESN? • Export all personal data in a “common” format
  • 31. Social Connections 13 Philadelphia, April 26-27 2018 Right to object • Not specifically related to any tool or technology
  • 32. Social Connections 13 Philadelphia, April 26-27 2018 13 Audit tools (for Connections on premises)
  • 33. Social Connections 13 Philadelphia, April 26-27 2018 Why we need them • Controllers (and processors) are required to keep records of processing activities and to be able to proof secure processing • Provide useful insight also in GDPR- unrelated situations • Demanded by our customer
  • 34. Social Connections 13 Philadelphia, April 26-27 2018 What is available • Almost nothing • Vantage for IBM Connections by Actiance (discontinued?) • Customizable WAS logs + IHS logs • WAS auditing • IC databases
  • 35. Social Connections 13 Philadelphia, April 26-27 2018 Related tools • panagenda Connections Expert (CE) + DataMiner • Infoware DPS and GDPR scanner?
  • 36. Social Connections 13 Philadelphia, April 26-27 2018 Connections Audit Tools • We decided to build our own tool • It reads data from DB2 database • Provides information up to 12 months old • Supports Connections V5 - V6
  • 37. Social Connections 13 Philadelphia, April 26-27 2018 Audit questions What is an overall system activity?
  • 38. Social Connections 13 Philadelphia, April 26-27 2018 Audit questions What did an user do recently in Connections?
  • 39. Social Connections 13 Philadelphia, April 26-27 2018
  • 40. Social Connections 13 Philadelphia, April 26-27 2018 Audit questions Who accessed a given piece content?
  • 41. Social Connections 13 Philadelphia, April 26-27 2018 Audit questions Is there any specific content?
  • 42. Social Connections 13 Philadelphia, April 26-27 2018 Thank You! Jan Valdman jan.valdman@whitesoft.eu +420 603 590 152 Contact me if you want to learn more about WhiteCAT Many thanks to people who helped me to discuss and validate my findings and ideas.
  • 43.
  • 44. PLATINUM SPONSOR GOLD SPONSORS BRONZE SPONSORS GOLD PLUS SPONSOR SILVER SPONSORS SPEEDSPONSORING BEER SPONSOR