This note shows how Morro Data customers can use the Morro Data Service and be GDPR compliant.
As any EU IT Provider or Manager will by now know, “GDPR” stands for “General Data Protection Regulation” and it goes into effect on May 25th of this year. GDPR is designed to protect how personal information of EU (European Union) citizens is collected, stored, and shared.
A quick recap on what Morro Data is with respect to and in the context of GDPR. Morro Data provides file services through its CloudNAS product line that enables users to Store, Access, Share and Archive unstructured data files. Users access the system through a local on-premises CacheDrive that behaves just like a regular NAS or File Server. The files are kept in the cloud using 3rd party public object storage providers. The CloudNAS product manages device and file system configurations and management, as well as user permissions for which file shares can be accessed. Thus, the Moro Data CloudNAS File Services can be viewed as file management middleware that sits between users and the 3rd party object store. While Morro Data optionally bundles Cloud Object Storage with its plan subscriptions, we do not provide the object storage itself or manage our own data centers. By using or selecting GDPR compliant cloud storage and services, the Morro Data service and its customers can be GDPR compliant.
Within the definitions of GDPR. Morro Data is a data processor, our customers are the data controllers. Morro Data does not deal directly with personal information. Morro Data also markets and sells it product and services to business users or their managed service providers (MSP) only, we do not market or provide services directly to individuals and consumers.
To utilize Morro Data in a GDPR compliant way, we recommend for customers:
Morro Data is looking for Managed Service Provider partners to offer CloudNAS services in the EU and UK and be the business relationship interface with EU Customers. If you are interested in becoming a partner contact us.