Encrypt, pseudonymize, or anonymize — Encrypt, pseudonymize, or anonymize personal data wherever possible
Most of the productivity tools used by businesses are now available with end-to-end encryption built in, including email, messaging, notes, and cloud storage. The GDPR requires organizations to use encryption or pseudeonymization whenever feasible.
| Property | Value |
|---|---|
| Section | Data security |
| Owner | platform |
Mapped Controls
| Control | Title |
|---|---|
| SID-CRYPTO-01 | PKCS#11 HSM Key Protection |
| SID-CRYPTO-03 | AES-256-GCM Encrypted Keystore |
| SID-CRYPTO-02 | PRF Extension Key Derivation |
| SID-DATA-01 | SD-JWT Selective Disclosure |
| SID-DATA-06 | PII Field Encryption for User Records |