General Data Protection Regulation (GDPR)
As of May 25th, 2018, the EU will enforce the General Data Protection Regulation (GDPR) for all member states. With significant penalties for leakage of personal data, organisations are required to carefully consider their compliance with the GDPR mandate. Amongst the requirements are a way in which to facilitate users’ Right to Access their stored data, as well as their Right to be Forgotten; to have said stored data permanently redacted.
Building on our existing security features such as Digital Signatures and Watermarking, Secure Print Release and Authentication, PaperCut NG & MF v17.2 introduces 2 new pieces of functionality to further assist with you being GDPR ready.
In addition, PaperCut has authored a GDPR Compliance Guide, with practical advice on steps you can take to help make your print system GDPR compliant.
PaperCut NG and PaperCut MF 17.2 introduces functionality to summarise and export all data stored by the application concerning individual user accounts, as well as fully redact that data.
Right to Access
The following server-command can be used to generate a suite of CSV files, the contents of which constitute all data associated with a given user.
export-user-data-history <username> <savelocation>
<username> reflects the user’s system username, and
<savelocation> reflects either a relative path or absolute path to store the files, with respect to the Application Server’s installation directory.
Right to be Forgotten
The following server-command can be used to remove all identifiable information associated with a given user.
delete-existing-user <username> permanently-redact-user-data
<username> reflects the user’s system username.
Keywords: security policy, security management, information privacy, legislation, gdpr, zono