The general data protection regulation is designed to protect basic rights and freedoms, in particular the individual’s right to protect their personal information. The GDPR is enforced in the whole of the EU and one of its purposes is to create a uniform and equal level of protection of personal information, making sure that the free flow of goods and services within the EU and the EES is not obstructed.
Article 32 of the GDPR deals with ”Security of processing” in relation to the handling of data. The personal data controller and the personal data processor are to take any suitable technical and organizational steps needed to maintain a level of security in parity with the risks involved.
All data that is stored and shared using Synkzone is continuously encrypted using keys only your organization, no one else, has access to. This way your organization can rest assured that you have established a high level of security and minimized or even eliminated the risk for unauthorized access to personal data. And you also get a clear picture of, and control over, who in your organization has access to personal data.
Using Synkzone you are making sure that you as an organization have taken appropriate steps and that you live up to the levels of protection specified in recital 78 of the GDPR. You have full and central control over your data (you and no one else), you have the required protection of data in place, you are securing and can demonstrate sufficient secrecy and integrity using access and authorization control, and you have very strong protection in place when sharing data, internally and externally (end-to-end encrypted).
Synkzone is delivered using certified data centers in Sweden. This way you can be sure that you also meet the requirements of item 1.f in Article 5 of the GDPR.