Is your business Fit for Compliance?

Modern enterprises need to be ready to meet data protection regulations, wherever they do business

Beyond the cyber-threat, an increasingly complex regulatory environment brings its own risks to businesses. Wherever you operate and whatever the regulation, Thales eSecurity solutions can help you achieve, and maintain compliance, improving your security and managing your risk.

Data Security Compliance
and Regulations

eBook

Key data protection and security regulations

Americas

EMEA

Europe, the Middle East and Africa

APAC

Asia Pacific

GDPR

Regulation

Active Now

Perhaps the most comprehensive data privacy standard to date, GDPR affects any organisation that processes the personal data of EU citizens - regardless of where the organisation is headquartered.

Learn More

Australia Privacy Amendment

Regulation

February 2018

Australia's Privacy Act establishes a mandatory requirement to notify the Privacy Commissioner and affected individuals of data breaches. It will take effect on February 22, 2018.

Learn More

PSD2

Regulation

Active now

The data security requirements of PSD2 are still evolving and are expected to call for a suite of industry best-practice solutions combining better security with high user satisfaction levels.

Learn More

eIDAS

Regulation

Active now

The eIDAS regulation has been developed to establish a single European market for secure electric commerce, impacting any organisation that handles online transactions with European citizens.

Learn More

PCI DSS

Mandate

Active now

Any organisation that plays a role in processing credit and debit card payments must comply with the strict PCI DSS compliance requirements for the processing, storage and transmission of account data.

Learn More

Data Breach Notification Laws

Regulation

Active now

Data breach notification requirements following loss of personal information have been enacted by nations around the globe. They vary by jurisdiction but almost universally include a “safe harbour” clause.

Learn More

Monetary Authority of Singapore Guidance

Guidance

Active now

To safeguard sensitive customer data and comply with MAS’s Technology Risk Management (TRM) guidelines, organisations need to apply consistent, robust and granular controls.

Learn More

Philippines Data Privacy Act of 2012

Regulation

Active now

The Philippines Data Privacy Act adopts international principles and standards for personal data protection and apply to the processing of personal data across both government and private sector.

Learn More

South Korea’s PIPA

Regulation

Active now

One of the strictest data protection regimes in the world, it is supported by two pieces of sector specific legislation related to IT and communications networks and the use of credit information.

Learn More

HIPAA

Regulation

Active now

These regulations cover healthcare information in the US, HIPAA relates to protection; encryption, key management. etc and HITECH relates to disclosure of data breaches.

Learn More

SOX

Regulation

Active now

United States Federal Law setting standards for a range of US companies, SOX Act sections 302 and 404 relate directly to data protection.

Learn More

NIST 800-53 / FedRAMP

Regulation

Active now

Since June 5, 2014 federal agencies have been required to meet FedRAMP standards, ensuring they meet internal data security standards and extended security controls for cloud-computing.

Learn More