The European Union is set to implement General Data Protection Regulation (or GDPR) on May 25, 2018. The official EU site defines GDPR as follows:
The EU General Data Protection Regulation replaces the Data Protection Directive 95/46/EC and was designed to harmonize data privacy laws across Europe, to protect and empower all EU citizen’s data privacy and to reshape the way organizations across the region approach data privacy.
For databases, a lot of data protection and GDPR compliance can happen by just configuring the database right. You can use the BMC Database Automation (BDA) Compliance Content for Oracle and Microsoft SQL Server as a reference to check whether the databases in your environment are configured correctly.
Follow these steps to use the compliance content:
- Download the GDPR compliance standard from BMC Electronic Product Distribution (EPD).
- Import the compliance standard content into the BDA manager.
- Run the imported compliance standards on the required databases.
- BDA will generate the report.
- In the report, click a host name to view specific details such as the check that was run on that host, including the description of the check, when it was last run, the status returned after the check, and percentage of compliance.
- In the Compliance Standards section, you can print, export, or delete the results from selecting the appropriate option from the menu.
- For non-compliant standards, perform the following tasks:
- Show Check Output in the Message column to display the message that provides information about why the check failed.
- Click Show Recommendation in the Message column to display the message that provides information about the recommended actions to make the check compliant. For example, the following figure shows the results section for a host:
- Run a remediation check on the standard to correct the problem. To do this, create a Remediation Action for a specific standard. When the Remediation Action is run, BDA displays a list of candidates which have failed the checks that the Remediation Action is configured to fix. Select the candidates that you want to fix and then run the Remediation Action. After the Remediation Action is run, run the Compliance Standard again to update the compliance results.
For a MANUAL COMPLIANT or MANUAL NON-COMPLIANT status, you can mark that standard as complete so that compliance reports will count those checks in the Compliance % field. Job results provide information to audit check result changes so that you can meet compliance audits.
For more information, see https://docs.bmc.com/docs/display/bda89/Viewing+the+results+of+a+compliance+standard in the BMC Database Automation online documentation.
You can use the BDA’s GDPR compliance content as a referral library and customize it as per your needs. Start using it and become GDPR compliant to avoid hefty penalties.