Origami Risk has seen a particular focus in the marketplace on the new General Data Protection Regulation (GDPR). The GDPR is a comprehensive data protection law in the European Union (EU) that will become effective on May 25, 2018. It expands the privacy rights of EU individuals and applies to any organization processing EU personal data, whether the organization is based in the EU or not. The main goal of the GDPR is to strengthen the security of EU personal data.
Origami Risk is pleased to announce that we are committed to GDPR compliance when enforcement begins on May 25, 2018. We are also dedicated to helping our customers comply with the GDPR with regard to our services, which includes providing GDPR-related assurances in our contractual commitments. In addition, our data center, Amazon Web Services, has confirmed that its services will comply with the GDPR once enforcement begins.
Data security has always been paramount at Origami Risk, as evidenced by our SOC 2 audits and FISMA (NIST) authorization, our compliance with the HIPAA security rule, and our EU-U.S. and Swiss-U.S. Privacy Shield certifications. You can find additional information about our data security at http://www.origamirisk.com/why-choose-us/technology/security/.