Guide Overview

Welcome to the OneSpan Risk Analytics General Data Protection Regulation (GDPR) Compliance Guide. This guide provides information on how the GDPR impacts OneSpan Risk Analytics.

This guide is not designed to inform you in detail about the GDPR and its possible impacts, other than where OneSpan Risk Analytics is concerned. For further and more detailed information about the GDPR, refer to the official publications by the European Union.

Managing Personal Data

To ensure GDPR compliance, OneSpan Risk Analytics provides several PL/SQL procedures for a database administrator to export and delete an individual’s personal data. The articles in this section describe each procedure and its parameters.

Data Encryption

To ensure compliance with aspects of the GDPR such as security of processing, personal data must be encrypted when stored (data at rest) and during all methods and stages of communication (data in transit). The articles in this section describe the necessary procedures to secure data at rest and in transit.

Intended audience

These articles are designed for IT managers, system administrators, security officers, and data protection security officers using Risk Analytics and related products.

The aim of this guide is to improve your understanding of the following segments and aspects of Risk Analytics in the context of the GDPR:

  • User account management
  • Data encryption and protection
  • Data erasure and export
  • GDPR-compliant setup of Risk Analytics and related products.

You should already be familiar with:

  • Online authentication and authorization tools and protocols, including SOAP, SSL, XML, HTML and TCP/IP.
  • Windows security software environments.
  • Database schema and account management.
  • Administration tasks including user management, reports, and performance monitoring.
  • Password management and encryption techniques.