{"id":18135,"date":"2015-12-21T14:00:19","date_gmt":"2015-12-21T14:00:19","guid":{"rendered":"https:\/\/owncloud.com\/?p=18135"},"modified":"2020-10-05T10:50:12","modified_gmt":"2020-10-05T10:50:12","slug":"blog-the-business-card-case","status":"publish","type":"post","link":"https:\/\/owncloud.com\/de\/blogs\/blog-the-business-card-case\/","title":{"rendered":"The Business Card Case"},"content":{"rendered":"<p>Imagine you are a German company who exhibited at a security show in Nuremberg, Germany.<\/p>\n<p>1) People came to your booth and handed in their business card in order to receive further information (legally, that is a consent).<\/p>\n<p>2) You scan the business card, together with the notes taken at the booth and you send it via email to your colleague in Munich using Google Mail (first violation).<\/p>\n<p>3) You enter the information into your CRM System: Salesforce (second violation).<\/p>\n<p>4) From there, or separately,\u00a0 the booth visitor\u2019s information finds its way into your marketing automation system Hubspot or your mailing list vendor Mailchimp (third violation).<\/p>\n<p>Without Safe Harbor, you are at risk to be fined 3 times from your data protection agency for just this one business card. Now multiply that times the number of visitors you had at your booth!<\/p>\n<p>Without Safe Harbor (or individual agreements\/contracts for all interactions with EU citizens),\u00a0 you need to know where your data is and you need to prevent data transfer outside of the European Union at all times.<\/p>\n<p>Alternatives:<\/p>\n<ul>\n<li>Implement encryption: this would help in case 2) but useless in case 3) and 4).<\/li>\n<li>Use datacenters in Europe: You switch to email servers in Europe, look for a CRM in Europe and a marketing automation system in Europe. Sounds great, but your choices are limited. However, Microsoft has already announced to offer a selection of their services through T-Systems, certainly a legal way to go, but wait for the pricing \u2026<\/li>\n<li>Seek alternative legislation: The United States could change some laws, like the Chief Legal Office from\u00a0<a href=\"http:\/\/blogs.microsoft.com\/on-the-issues\/2015\/10\/20\/the-collapse-of-the-us-eu-safe-harbor-solving-the-new-privacy-rubiks-cube\/\" target=\"_blank\" rel=\"noopener noreferrer\">Microsoft rightfully suggests<\/a>.<\/li>\n<li>Build your own datacenter or store your data at a trusted place: You use everything hosted locally or in a datacenter from a local service provider you trust (who must then prove compliance with legislation).<\/li>\n<\/ul>\n<p>In any case, you can see that it\u2018s important to know where your data is, you need to start locating your data today \u2013 a great start is our\u00a0<a href=\"https:\/\/owncloud.com\/wp-content\/uploads\/2015\/10\/eBook_Data_Security_IT_Checklist_EU_ENG_151104.pdf?whitepaper_title=Data%20Security%20Checklist%20%E2%80%93%20EU&amp;lead_source_detail=Data%20Security%20Checklist%20%E2%80%93%20EU&amp;lead_source=White%20Papers\" target=\"_blank\" rel=\"noopener noreferrer\">data security checklist<\/a>.<\/p>\n<p>We know, trying to stay inside the laws and regulations is not always easy, but we owe it to the people we get data from \u2013 even if as small as a business card.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Imagine you are a German company who exhibited at a security show in Nuremberg, Germany. 1) People came to your booth and handed in their business card in order to receive further information (legally, that is a consent). 2) You scan the business card, together with the notes taken at the booth and you send [&hellip;]<\/p>\n","protected":false},"author":15,"featured_media":78665,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_et_pb_use_builder":"","_et_pb_old_content":"","_et_gb_content_width":"","inline_featured_image":false,"footnotes":""},"categories":[48],"tags":[195],"class_list":["post-18135","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news","tag-safe-harbor"],"acf":[],"_links":{"self":[{"href":"https:\/\/owncloud.com\/de\/wp-json\/wp\/v2\/posts\/18135","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/owncloud.com\/de\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/owncloud.com\/de\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/owncloud.com\/de\/wp-json\/wp\/v2\/users\/15"}],"replies":[{"embeddable":true,"href":"https:\/\/owncloud.com\/de\/wp-json\/wp\/v2\/comments?post=18135"}],"version-history":[{"count":0,"href":"https:\/\/owncloud.com\/de\/wp-json\/wp\/v2\/posts\/18135\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/owncloud.com\/de\/wp-json\/wp\/v2\/media\/78665"}],"wp:attachment":[{"href":"https:\/\/owncloud.com\/de\/wp-json\/wp\/v2\/media?parent=18135"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/owncloud.com\/de\/wp-json\/wp\/v2\/categories?post=18135"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/owncloud.com\/de\/wp-json\/wp\/v2\/tags?post=18135"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}