The data that is recorded in your database should be well protected. Insufficient security can result in loss or theft of data. The extracted data can then be exploited, such as identity fraud. Due to recent incidents, the aspect of privacy protection is more important than ever before.
Protection of sensitive data
Since 2001 privacy protection in the Netherlands is governed by the Wet Bescherming Persoonsgegevens(WBP). Companies and authorities that work with personal data should, in accordance with this Act, take appropriate technical and organizational measures.
The privacy protection rules are quite complex, which makes it clear to all organizations what measures should be taken. The regulations apply to any form of processing personal data. At all times there must be adequate, expertly applied security and privacy protection. The entire or partial (automated) processing of personal data must be reported to the Autoriteit Persoonsgegevens (AP). Autorisateit Persoonsgegevens (AP) was previously known as the College Bescherming Persoonsgegevens (CBP).
Customers of service organizations can assess the governance of the service organization using a SOC2 report. In addition, an SOC2 reporting is a quality stamp for the organization.