General Data Protection Regulation is a significant new EU Data Protection Regulation that introduces requirements that will raise and harmonize standards for data protection, security and compliance across EU for now, but looking at the recent disclosure of data by Facebook it´s a rumor that a similar regulation will e introduced to US and other markets in the close future. GDPR is enforceable May 25th, 2018 and it replaces the existing EU Data Protection Directive. The territorial scope of this new compliance is for organizations established in the EU and organizations without EU presence who target or monitor EU individuals. About Data GDPR compliance covers both general content and personal data from EU individuals under the following definitions. General Content = anything that a customer (or any end user) stores, or processes including: Software, Data, Text, Audio and Video. Personal Data = information from which a living individual may be identified or identifiable (under EU data protection law) • Customer’s “content” might include “personal data” Key new regulations with GDPR - The Right to Data Portability: Individuals has the right to a copy of all personal data that controllers have regarding him or her. It also must be provided in a way that facilitates reuse. - The Right to Be Forgotten: This gives individuals the right to have certain personal data deleted so third parties can no longer trace them. - Privacy by Design: This helps to facilitate the inclusion of policies, guidelines, and work instructions related to data protection in the earliest stages of projects including personal data. - Data Breach Notification: Controllers must report personal data breaches to the relevant supervisory authority within 72 hours. If there is a high risk to the rights and freedoms of data subjects, they must also notify the data subjects. Where should I start? It´s important to understand that Amazon Web Services (AWS) has claimed they are already GDPR compliant so based on the shared model (they are responsibly for the processing layer) these are the tools you have to focus on. Due to the complexity of implementing changes on existing systems and Apps we have break it into 4 different categories and we describe AWS tools that will help you to become GDPR compliant: 1) Data Access control: Multi Factor Auth, API req Auth and temporary Access token. 2) Monitoring Access: CloudTrail ON, Inspector, Macie and AWS config. 3) Data Encryption: Encryption at rest with AES256 and at transit. 4) Compliance framework: Appropriate technical and organizational measures may need to include “the ability to ensure the ongoing confidentiality, integrity, availability, and resilience of the processing systems and services.” SOC 1 / SSAE 16 / ISAE 3402 (formerly SAS 70) / SOC 2 / SOC 3 PCI DSS Level 1 ISO 9001 / ISO 27001 / ISO 27017 / ISO 27018 FIPS 140-2 C5 There are other tools that can be found in AWS marketplace that will help you with the process of implementing GDPR and itś also important to have a Consulting or Technology partner on this journey that will speed up the process and also assure the results. Teracloud.io has proven experience helping organizations becoming PCI, HIPPA and right now GDPR compliant. In case you need help do not hesitate to contact us at info@teracloud.io #GDPR #AWS #AmazonPartnerNetwork #managedservices #EU #personaldata #GeneralDataProtectionRegulation

The AWS Partner Network (APN) is the global partner program for AWS. It is focused on helping APN Partners build successful AWS-based businesses or solutions by providing business, technical, marketing, and go-to-market support. As an APN partner, Teracloud. has set the baseline for constant grow in business and technical areas. As a company we know we must to keep building our future over APN program training and certifying our teams as a commitment with the quality of the services we provide. Teracloud participated at re:invent 2017 to the Global Partner Summit at the MGM Grand Garden, the event where AWS announce new services and the future for their services. APN program had dedicated sessions where it was shared that Serverless, IoT, IA, Machine Learning and Big Data are definitely the present and future of IT within the Cloud. Becoming part of the APN program is a must for any Cloud Tech Consulting company especially if you take into consideration that AWS is by far the number 1 Cloud provider and looks that it will remain with that leadership position for several years. At the end of the day Teracloud joining APN it is a clear benefits for the company but definetively a big plus for our clients. #AWS #APN #reinvent2017 #teracloud #AmazonPartnerNetwork

Agile companies are seizing opportunities around the cloud to create innovative new services and business models that decrease time to market, create operational efficiencies and engage customers in new ways. Cloud services like Infrastructure-as-a-Service (IaaS), Software-as-a-Service (SasS), Platform-as-a-Service (PaaS) and Business Process-as-a-Service (BPaaS) are more than technology delivery paradigms. Cloud computing is a great way that small business owners can save money, time and hassle on a daily basis. Here are a few benefits of cloud for small businesses: Reduction of Costs: Cloud-hosted servers enable mass-scale computing power and minimize IT requirements and physical storage, providing a significant savings. Anytime, Anywhere: Cloud-hosted desktops allow users to access their files anytime, anywhere, using any device. Files are no longer stuck on one single computer. Ease of Collaboration: Saving and accessing files through the cloud allows everyone to work from the same master document. Administrators can even implement access and permission controls. Reduces Risk: The cloud adds security for its users by backing-up data off-site, decreasing the potential for hackers, viruses, and other cyber-security issues. Improves Efficiency: After migrating to the cloud, companies no longer worry about power requirements, space considerations or software updates. #Accelerateyourbusiness #outsource #cloud #costreduction #improves

Businesses need to move the cloud, simply because they are at a competitive disadvantage if they don’t. Companies that figure out how to harness the transformative power of cloud infrastructure, as well as platform services, will run circles around those that fail to do so. These enterprises achieve incredible efficiencies related to launching new products, building tighter relationships with customers and partners, and streamlining internal processes. Cloud is a big deal for enterprise IT. But it doesn’t re-write the best practices for rolling out a new tech project. Here are 4 simple steps we advise to our customers to follow when developing their cloud strategy. 1. Assessment Every cloud migration must begin by gathering the right information from the right business units. Detailed business and technical information will help determine priorities and unite enterprise leaders. 2. Road Map Cloud migration plans need to organize hundreds of complex systems and guarantee early wins. A great roadmap will use data gathered in the Cloud Assessment phase to prioritze projects with the most immediate benefit to your business in order to make a big impact fast. 3. Migration You have an ambitious vision for cloud adoption that spans the enterprise. Once you have a detailedCloud Roadmap in place, it is time to begin migrating your applications to the selected cloud provider. 4. Transform Your IT Cloud adoption alone will not transform your business. To realize the true power of the cloud, your team needs automation tools and DevOps methodologies to move faster, iterate frequently, and build better products. #cloudmigration #teracloud #adviceforcompanies #migratetothecloud #movingtothecloud #assessment #transformyourit #managedservices