Nextcloud releases GDPR Compliance kit for on-premises collaboration solution

Post date

May 23, 2018

Categories
Author

Jos Poortvliet

Many companies have been working hard to ensure they are GPDR compliant by the end of this week. For many, Nextcloud has been a part of that, simplifying compliance by helping companies keep sensitive data in-house. Today, we release a Nextcloud Compliance Kit to help these organizations comply with the requirements of the GDPR.

GDPR requirements

The GDPR requires businesses and other organizations who handle data from private users to offer clarity about how they use this data as well as a way to access, rectify or delete it. When dealing with a public cloud vendor, data leaves the control sphere of the business and a Data Processing Agreement needs to be signed with the cloud vendor. The business then has to ensure processes are set up to deal with GDPR related requests to be compliant. Keeping data in-house by self hosting negates the need for dealing with one more external party, keeping the whole process in-house and simplifying compliance.

The Data Request application shows buttons to request an export of personal data from the administrator in the user settings

The security requirements demand organizations to take appropriate measures to secure data. A Nextcloud Subscription delivers security patches and consulting based on our expertise and Security Bug Bounty Program, helping Nextcloud customers to make sure that this requirement is met.

Compliance Kit

The kit offers Nextcloud customers tools and documentation to make compliance a checklist-affair. Specific features in two Nextcloud apps and an update, a GDPR compliance steps walk-through and a detailed account of data handling in Nextcloud with instructions on how to extract, modify and delete data as required by law, make up the package.

GDPR compliance is a major concern for many of our customers. Our GDPR Compliance Kit essentially takes these concerns away with regards to the file handling, collaboration and communication capabilities as offered by Nextcloud

— Andreas Rode, head of sales

Nextcloud now offers organizations who host a Nextcloud server apps that help their GDPR compliance, depending on their specific circumstances:

  • The Imprint update to the theming app enables businesses to show a link to a legal notice or privacy policy on login
  • The Delete Account app enables businesses to offer users an easy way to delete their account as required under the GDPR
  • The Data Request App adds a way for users to request data, changes or account deletion from their user settings.
Adding an imprint link to Nextcloud 13

Moreover, Nextcloud offers customers access to a GPDR Compliance Checklist and a nearly 20 page detailed GPDR Admin Manual indicating where data can be found on a typical Nextcloud server and how to handle requests for extracting, rectifying and deleting data.

The GDPR Compliance Kit dealt with all our concerns. The global nature of the research community with frequent collaboration with European researchers and students requires global compliance awareness and an on-premises solution backed by the expertise of Nextcloud GmbH gives us the assurances we need.

— Hans Erasmus, Junior Infrastructure Architect at the North-West University in South Africa.

The User account deletion app allows users to delete an account without administrator assistance.

The apps and GDPR checklist are released to the general public while customers have access to the full compliance kit including GDPR Admin Manual. The apps can be found on the Nextcloud app store while the GDPR checklist can be downloaded from our website. If you have questions about Nextcloud and GDPR compliance, contact us!

Today, Nextcloud also announces a partnership with Red Hat to offer full-stack in-house storage and solutions to help customers with GDPR compliance.

Other posts

Enterprise Day Speaker: Felix Gebauer, Schleswig-Holstein

Enterprise Day speaker: Felix Gebauer, Schleswig-Holstein's open source strategy

Nextcloud Enterprise Day speaker announcement: Introducing Felix Gebauer from Schleswig-Holstein German state's administration

Read More
Bechtle and Nextcloud offer a digitally sovereign service for the public sector

Bechtle and Nextcloud offer digitally sovereign collaboration services for the public sector

Bechtle and Nextcloud announce today a complete managed collaboration platform for the public sector that requires no tender and can be deployed immediately.

Read More
Nextcloud Enterprise Day 2024

Nextcloud Enterprise Day April 2024: secure your seat!

In April 2024, we bring together industry professionals and key players in the field of IT to foster networking, share knowledge, showcase use cases, and discuss the latest advancements in technology around Nextcloud.

Read More

Migrating from ownCloud to Nextcloud

Discover how to make the switch from ownCloud to Nextcloud. Our quick guide provides insights into the migration process, helping you make the transition smoothly.

Read More
Owncloud Nextcloud Kiteworks migration tools

Kiteworks acquires ownCloud & Dracoon

Today, US-based file sync & share vendor Kiteworks announced their acquisition of ownCloud and Dracoon. Kiteworks points out that their customers now have access to their file-sharing application. It is to be expected they will not maintain 3 similar products, but customers will have to migrate to the US firms’ platform or look for another […]

Read More
Frank Karlitschek, Nextcloud founder, wins the European SFS Award

Nextcloud founder earns European Free Software Award

Nextcloud founder and CEO Frank Karlitschek earns the honorary SFS Award at the 20th annual SFSCON taking place in South Tyrol, Italy.

Read More
Meet the first open-source AI assistant that doesn't prey on your data

Meet the first open-source AI assistant that doesn't prey on your data

The first ethical, open-source AI assistant that can get a multitude of tasks done for you without compromising your data.

Read More
Minister of Digitization of Schleswig-Holstein and Nextcloud CEO shake hands

German state & Nextcloud build digitally sovereign AI for public sector

As part of Schleswig-Holstein's state digitization strategy, the state chancellery has announced they will work with Nextcloud to develop AI for working with government documents. This comes just after we announced the first private AI assistant last weekend with Hub 6. The German state already uses Nextcloud and their AI strategy aligns with our work on ethical, local AI technologies.

Read More
ethical ai

AI in Nextcloud: what, why and how

Over the last year, AI has become a popular topic. Some is hype, some is substance. Some is good, some is bad. We want to give you the good, not the bad, and ignore the hype! AI has a ton of opportunity – but also risk. So we put you in control – off by […]

Read More
How to protect yourself against deepfakes

How to protect yourself against deepfake scams in video calls

Read out guide to learn what deepfake scams are, how spot a scammer, and how to protect yourself with the right techniques and software.

Read More

Enterprise Day 2024 sponsor announcement: plusserver

Join us at Nextcloud Enterprise Day on April 24 in Munich and meet our sponsor, plusserver. Discover how they embody the pinnacle of 'cloud Made in Germany' with their commitment to data sovereignty and secure workplace solutions.

Read More

Microsoft slows antitrust case by unbundling Teams

Microsoft attempts to delay antitrust action by separating Teams from Office, hoping to continue to abuse its market dominance while it 'negotiates' with the EU.

Read More

Start the discussion at the
Nextcloud forums

Go to Forums