GDPR and backup encryption
GDPR and backup encryption
According to the GDPR controllers and processor should make an evaluation of the risks of their various data processing activities and implement measures to mitigate those risks, such as encryption in order to:
1) Maintain security
2) Prevent processing that isn’t compliant with the GDPR
To encrypt / decrypt my data I usually use openssl:
PW=$(<~/.mypass/pw.txt); tar cz -C / "${FILE_TO_ENC"/"}" | openssl enc -aes-256-cbc -pass pass:${PW} -salt -e > "${ENC_FILE}${ENC_FILE_EXTENSION}";
PW=$(<~/.mypass/pw.txt); openssl enc -aes-256-cbc -pass pass:${PW} -d -in "${ENC_FILE}${ENC_FILE_EXTENSION}" | tar xz;
I think implementing a similar option in the control panel that allows encrypting backups would be very useful. In this way it would be possible to save backups on external disks like S3 or Google Drive without problems.
1) Maintain security
2) Prevent processing that isn’t compliant with the GDPR
To encrypt / decrypt my data I usually use openssl:
PW=$(<~/.mypass/pw.txt); tar cz -C / "${FILE_TO_ENC"/"}" | openssl enc -aes-256-cbc -pass pass:${PW} -salt -e > "${ENC_FILE}${ENC_FILE_EXTENSION}";
PW=$(<~/.mypass/pw.txt); openssl enc -aes-256-cbc -pass pass:${PW} -d -in "${ENC_FILE}${ENC_FILE_EXTENSION}" | tar xz;
I think implementing a similar option in the control panel that allows encrypting backups would be very useful. In this way it would be possible to save backups on external disks like S3 or Google Drive without problems.