Professional Documents
Culture Documents
Task № 1.
Match each this requirement with appropriate SANS critical control.
The answer:
https://www.itgovernance.eu/blog/en/the-gdpr-understanding-the-6-data-
protection-principles
Task № 2.
One company providing service of Taxi.
They need to comply with GDPR standard.
Company collects such information: Name, Phone number and geolocation.
Combination of these data – is a personally identifiable information.
GDPR requirements:
1. End user’s information must be encrypted
2. Company must have a function to delete user information after his request.
The answer:
1. We need to add additional column – user id.
2. It is necessary to build the second database, which will have two
columns: 1 column with user id, the second column with phone number.
Database № 1
User id Name of client Phone number Location
1 ///////////// ////////////// //////////
2 ///////// /////////// ////////////
Database № 2.
User id Phone number
1 +7707777777
2