Get started

Successful GDPR-compliant data exchange

The EU GDPR came into effect on 25.05.2016. Violations can result in penalties of up to 20 million Euros, or up to 4 % of the total annual turnover, along with a considerable loss of public reputation. With DRACOON you can easily send and store your data GDPR-compliantly.

A reporting tool provides transparency

Important principles of the EU-GDPR are the fulfillment of integrity and transparency. Companies must be able to inform those affected about the handling of their personal data accurately, comprehensibly and comprehensively - child's play with the DRACOON audit log.

The audit log can provide EU-GDPR-compliant information on, e.g., processing purposes, processing categories, recipients or storage period. The audit log can also be used to detect data changes.


Only client-side encryption complies with the GDPR

Client-side encryption plays an important role in complying with the GDPR. Companies need to take fitting technical and organizational measures in order to ensure an appropriate security level. These measures also include the encryption of data. 

Only if data is encrypted on the client is it ensured that the data always remains encrypted. In addition, client-side encryption offers additional internal security: even administrators cannot look into the files.


German or European cloud providers

A solution that is being developed and operated in Germany or Europe is automatically subject to the strict data protection laws and ensures GDPR-compliant data processing.

Right to be “forgotten”

An individual expiration date can be set for each user, file and share. Therefore, personal and digital data is not available indefinitely.

All users and shares are listed in order to maintain an overview at all times.


Privacy by Default

The principle of data protection-friendly default settings (Privacy by Default) in Article 25 GDPR stipulates that IT systems and applications are preset to process only those personal data whose processing is necessary for the purpose pursued.

Privacy by Design

According to Article 25 GDPR, the principles of data protection should already be taken into account when implementing and developing products, services, applications and technical processes that process personal data (Privacy by Design). Through appropriate technical implementation, it should be ensured that

  • only certain data is collected,
  • it is anonymized and encrypted as quickly as possible
  • it is only processed to the required extent,
  • it is deleted after the storage period has expired
  • only certain persons have access to the data.

Don’t be afraid of the GDPR

The 7 most important requirements and how to fulfill them

The EU GDPR affects all enterprises and organizations that collect, process and store personal data. This includes for instance, customer data, names or email addresses. This means that companies must define rules, processes and measures for storing and processing this data compliantly.

Learn at a glance how data can be used and stored with DRACOON in accordance with the EU-GDPR.


Download your FactSheet about GDPR now

GDPR-compliant data exchange

Save, share and manage your files in a GDPR-compliant manner for 14 days for free!

Try now