Data Discovery Solution for GDPR and PCI Compliance

This document is a case study detailing how Cirencester Friendly adopted SecurEnvoy’s Data Discovery Solution to achieve compliance with GDPR and PCI DSS regulations. The case study outlines the challenges faced by Cirencester Friendly, particularly in managing sensitive data such as Personally Identifiable Information (PII) and Payment Card Information (PCI). It describes the need for a comprehensive method to search their entire digital estate, including endpoints and cloud applications, to meet compliance requirements. The solution implemented allowed for auditing and monitoring of sensitive data across all digital platforms, facilitating subject access and right to be forgotten requests. The case study emphasizes the importance of training staff on data usage as a key differentiator in their compliance efforts. By deploying the Data Discovery platform, Cirencester Friendly gained clear visibility of their sensitive data, enabling timely responses to compliance requests and enhancing their overall digital resilience.