问题描述
我的第一个问题与GCP的GDPR有关.即使我从社区中找到了一些有用的信息,但仍然找不到任何确认性信息.
My first question here and it's related to GDPR with GCP. Even though I have found some useful information from the Community, I still couldn't find any confirmative information.
我住在欧洲,由于GDPR,我担心使用GCP的应用程序-包括Firebase和App Engine-可能需要一些其他配置.你们是否知道提及或什至是应用程序的任何参考资料或文章,可以确认使用这些应用程序不需要进行有关GDPR合规性的任何进一步配置?
I live in Europe and I'm afraid my application using GCP - including Firebase and App Engine - might need some additional configuration due to GDPR. Do you guys know any reference or articles that mention - or even applications - that confirms that using these applications won't need any further configuration regarding GDPR compliance?
先谢谢大家!
推荐答案
GDPR有两个主要方面:
There are two major areas to GDPR:
- 您正在使用的服务.
- 您的应用程序及其数据管理.
只要您正确实施/部署Google Cloud服务,Google Cloud便符合GDPR.
Google Cloud is GDPR compliant provided you implement/deploy Google Cloud services correctly.
您的应用程序及其数据管理不符合GDPR要求,仅因为符合GCP要求.您必须实施政策和程序,以达到GDPR合规性并保持合规性.
Your applications and their management of data are not GDPR compliant just because GCP is compliant. You must implement policies and procedures to attain GDPR compliance and maintain compliance.
要遵守各种标准和要求是非常复杂和具有挑战性的.在Stack Overflow支持的空间中无法回答此问题.有很多关于这些主题的书.
Compliance with the various standards and requirements is very complicated and challenging. This cannot be answered in the space that Stack Overflow supports. There are substantial books written on these topics.
参考示例为:
合规性不是测试您的应用程序的软件程序.这是一组准则和要求,必须对其进行审核/验证.正如我所提到的,这是要求合规的大量工作.
Compliance is not a software program that tests your application. It is a set of guidelines and requirements that must be reviewed/verified. As I mentioned this is a substantial amount of work to claim compliance.
如果您正在寻找GDPR的快速指南,请看这本书.这适合入门,但绝不会涵盖您需要了解的所有内容.
If you are looking for a quick guide to GDPR look at this book. This is suitable for getting started, but in no way covers everything you need to know.
这篇关于Google Cloud Platform及其应用程序是否符合GDPR?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持!