Acumatica’s Commitment to GDPR

Unless you’ve been living under a rock, you’re bound to have heard of how the new General Data Protection Regulation (GDPR) has taken the world by storm, taking many managers’ and developers’ hair along with it. Effective 25th May 2018, the new GDPR seeks to strengthen the protection of EU individuals’ personal data, broadly affecting all companies and government agencies worldwide that collect or use personal data tied to EU residents.


GDPR and Cloud Applications

As the new GDPR requirements become a reality, organisations using cloud applications for the scalability and flexibility they offer should be aware of data privacy relating to collection and storing of personal and sensitive information. Organisations must implement an appropriate level of security to prevent issues such as information leaks from occurring to third parties, including competitors. Furthermore, the new GDPR has extended individuals’ rights by giving them greater ownership of their own data, which includes the right to be forgotten.


The Acumatica Cloud ERP Commitment to GDPR

Acumatica has dedicated substantial resources to establishing and maintaining a comprehensive information security program, designed for legal and regulatory compliance as well as meeting internationally accepted standards of best practices.


To ensure safety and data protection, Acumatica takes a layered, defensive approach to protecting the confidentiality and availability of systems and data, by deploying administrative, technical, and physical controls. From design through implementation, this cloud-based ERP solution was created with secure processes in secure environments. Furthermore, only a handful of Acumatica key personnel have administrative access to Acumatica’s Amazon Web Services (AWS) management console, and even then, it requires the use of multi-factor authentication to gain entry. This means that a user must provide more than just a password to access the network – an additional factor of authentication which only the user knows.

In order to gain access to Acumatica’s customer database for support purposes, users require a connection through either an Acumatica office or the Acumatica VPN, wherein data and activities in these channels are logged and monitored by their information security team. Customers have control over access rights and can further delineate access by IP address.

If you’d like more information on how Acumatica Cloud ERP is committed to GDPR and how it can help accelerate your business growth, contact our team at Computime Software. Make sure to follow us on Facebook, LinkedIn, Twitter, Google+ and Instagram for more updates.