fernando_fonseca

Fernando Fonseca, CISSP, CISSP-ISSAP, CISM, CHFI, Security+, ISMAS (EXIN), MCSE Security
Education Director
Antebellum Capacitação

Using PCI DSS to comply with GDPR

GDPR comes to change the way organizations stores data and protect it in order to avoid expensive fives and liability.
PCI DSS is a very effective standard to protect payment cards information but can be adapted to protect other personal information.
Our presentation focuses on a model to develop a PDE (Personal Data Environment), pseudonymize and anonymize data in PDE and create metadata about the privacy of the personal data.

Learning objectives:

1. Segregate personal information in a “PCI Style” and develop a PDE (Personal Data Environment)
2. Pseudonymize and anonymize data in PDE
3. Create metadata about the privacy of the personal data.