EN

English

Deutsch

      Portfolio

      Data Identification & Clustering Migration Transformation Quality & Integrity Platform Integration Data Privacy & Security Simulation & Automation Retention & Retirenment Governance & Support

      Expertise

      Utilities Healthcare Automotive Public Business

      All challenges

      SAP S/4HANA Transformation Carve-out SAP ILM Implementation System Decommissioning

      About us

      Honours

      Newsroom

      Blog Press Releases Events

      Partner Program

      References

      Customer Stories
      Work at Natuvion Jobs

      Home > Newsroom > Testsystems Dataprotection Compliant

      Test systems data protection compliant: Here's how!

      frau-verzweifelt-1200x550

      Aug 22, 2022

      Author: Editorial Team

      Since the introduction of the GDPR, companies are required to ensure data protection regulations across all their systems. In production systems, this is a no-brainer, but secondary systems such as test environments are often forgotten. However, this is exactly where you should be careful. The GDPR also applies to these systems, and data protection violations can be really expensive there, too.

      Why the use of productive data in secondary systems is risky

      Whether it is system adjustments, quality checks or employee training, you need to ensure that these scenarios on test, training and quality systems are as up-to-date and as comprehensible as possible. The conditions should also be as realistic as possible. This is why secondary systems are usually run with a system copy of the production systems that include real personal data. This is what causes a problem in terms of data protection.

      Which legal requirements apply

      According to the GDPR, personal data may only be collected and processed for a specific purpose. If this purpose limitation is breached, data protection law is violated. Healthcare facilities, for example, cannot readily use their patient data collected for medical treatment for training purposes. This is because a change of purpose takes place at the very moment when a system copy is created and the data is used for training purposes. The data subjects have also not explicitly given their consent to have their data processed in such a way. In addition, data protection requires data economy which means that data must be deleted as soon as the purpose for which it was originally collected no longer applies. We therefore conclude that the use of real personal data in secondary systems is generally not permitted. So what alternative options are there to use real data for test processes while remaining data protection-compliant? The keyword is: depersonalization.

      The solution: depersonalized data

      Depersonalized data no longer allows conclusions to be drawn about the original personal information, but still makes it possible to work with real-life data. To do this, the data concerned is either anonymized or pseudonymized. In the latter case, personal information is replaced. Key designations such as customer numbers, however, remain unchanged. This method is particularly fast and sufficient for the vast majority of applications. Ultimately it is important that people can no longer be identified after the "depersonalization" process. In the case of anonymization, the process goes one step further and completely removes all personal information, as well as key identifiers such as the customer number and replaces them with new numbers. This means that no one with access to the production system - not even the data manager or owner - is able to draw conclusions about the original person behind the data.

       

       

      EN_Downloads_Whitepaper_TDA_PaperRahmen

      Sounds complicated? It doesn't have to be!

      With Natuvion Test Data Anonymization (TDA), we have developed a solution that allows you to depersonalize your personal data in a very uncomplicated, extremely fast, and highly flexible way directly after making a system copy. This means you are on the safe side when it comes to data protection, while at the same time benefiting from test and development environments that are very similar to a production system. But that's not all: you can also use Natuvion TDA to protect your trade secrets, crossing one possible additional security measure off your list. Want to learn more about this? Then download our whitepaper.

      Download whitepaper here

      Related News

      “We need to change the way data gets into systems!”  

      Apr 12, 2024

      “We need to change the way...

      Master data forms the basis of almost all business...

      Read more
      How archiving analyses can assist you in your transformation!

      Mar 27, 2024

      How archiving analyses can...

      In today's evolving system landscapes, strategic and...

      Read more
      EN_Downloads_SuccessStory_Stockmeier

      Mar 15, 2024

      From three to one!

      STOCKMEIER uses Natuvion DCS to successfully consolidate...

      Read more
      SAP S/4HANA for HCM - how to ensure a smooth transformation

      Mar 8, 2024

      SAP S/4HANA for HCM: How to...

      With the delivery of HCM for SAP S/4HANA in October 2022,...

      Read more
      Natuvion supports the world's largest automotive group, Volkswagen, in its SAP S/4HANA transformation

      Mar 5, 2024

      Natuvion supports the...

      Group-wide transformation project awarded to Natuvion after...

      Read more
      The Big cleanup

      Feb 21, 2024

      The big cleanup

      SAP customers are well aware of the necessity to complete...

      Read more
      Future ready with SAP S/4HANA Utilities

      Feb 7, 2024

      Future ready with SAP...

      After more than 20 years on SAP IS-U, ENGIE decided to...

      Read more
      Insights from American Utility providers on their transformation journey

      Jan 17, 2024

      Insights from American...

      The utility sector is undergoing a significant...

      Read more

      Never miss information again.
      Subscribe to our newsletter!