There is hardly anyone on the planet that hasn’t heard the acronym “GDPR” in the last couple of months. But just in case, we’ll explain it briefly, and then outline what Redis Labs has done to support GDPR, and what it means to our customers.
GDPR (General Data Protection Regulation) is a European Union (EU) regulation regarding data protection and privacy for individuals. GDPR primarily aims to give EU citizens and residents control over their personal data, but it also addresses the export of personal data outside the EU.
The regulation applies to three different types of entities with varying levels of liability:
- Data Owner – An individual that owns his or her personal data (email, phone, preferences, etc.)
- Data Controller – An organization that collects data from EU residents
- Data Processor – An organization that processes data on behalf of a Data Controller
What does this mean for you?
First of all, if your applications do not handle personal information, or you do not collect personal information from EU residents, GDPR might not apply to you (that said, if you’re not sure, we highly recommend you consult a GDPR legal expert). If you use one of Redis Labs’ DBaaS services (either the Redis Enterprise Cloud or the Redis Enterprise VPC service), then Redis Labs is considered your Data Processor.
The Redis Labs service is built on top of our software. And we’ve taken steps to govern data and achieved SOC 2 compliance. This means Redis Labs puts you on a fast track towards GDPR compliance.
On the other hand, if you use Redis Labs’ on-premises solution (Redis Enterprise Software), then Redis Labs is not considered a Data Processor, and the GDPR does not specify any special actions you need to take with us. We do, however, recommend that you gain a deep understanding of how data is accessed, stored and protected and whether or not your applications and data storage policies comply with GDPR regulations. We discussed some of the data considerations for your database in a previous blog post.
GDPR Flow Chart:
Resources for Redis Labs Customers:
Redis Labs has DPA agreements in place with our own sub-processors.
At Redis Labs we are committed to the highest level of trust, transparency, standards and regulatory compliance. We strive to deliver the best customer experience while earning the trust of thousands of Redis Labs customers globally.If you have any questions, you can contact us at firstname.lastname@example.org.