The new General Data Protection Regulation (GDPR) comes into force on May 25, 2018, potentially impacting all the companies doing business in the European Union.
What is GDPR?
All companies and organizations that possess or process personal data when doing business in the EU must comply with GDPR. The new regulation entitles more rights to data subjects (users) and enhances data protection level – protection by design and by default- and the security level of personal data. It also requires for organizations and businesses to be fully transparent about how they are using and safeguarding personal data, and to be able to demonstrate accountability for their data processing activities.
How will GDPR affect video security?
GDPR makes no explicit mentions of this industry. However, it is impacted indirectly as users of video security solutions process large amount of data generated by the cameras and other sensors.
Hikvision focuses on GDPR Compliance
As a global market leader, Hikvision is committed to protecting personal data and fully supports the implementation of GDPR requirements. Hikvision has been taking several initiatives to protect personal data in the use of its products and solutions. That includes communication encryption through AES algorithms and the HTTPS protocol, minimized data collection, data anonymization, user authorized data collection, data security audit, and more.
In data transmission, encrypted interfaces from the cloud to the client and devices guarantee communication security. In data storage, server-side encryption is another safeguard for data security. In data management, audit logs keep operation and maintenance of servers under strict internal control. In data application, utilization of data is comprehensively and thoroughly audited.
To ensure the utmost safety of Hikvision products and services, the company put forward a series of policies to protect data, and set up a data protection group, connecting GDPR requirements with Hikvision business operations. This includes analysis, control, and advisory internally in terms of legal risks in product lifecycle management including product design, manufacturing, delivery and service.
Hikvision has always recognized and complied with international industry standards and has been participating in the development and promotion of industry safety standards. In addition, Hikvision works with independent third-party assessment bodies to conduct fair safety assessments and certification of our products. Hikvision has achieved ISO 27001 Certification and successfully completed SOC 2 Type 1 Report. Regarding GDPR certification, we are looking forward to engaging certified authorities to be announced by the EU Commission.
At Hikvision, we have worked hard to earn our reputation as a well-respected technology enterprise that adheres to the highest ethical business standards. We are committed to evaluating and enhancing our data protection capabilities in order to provide our valued customers with the highest quality and most reliable products and solutions.