Q&A: Explaining GDPR and Compliant Multi-cloud iPaaS

How can an iPaaS help you with your GDPR efforts? Let's put this out in Q&A format with illustrations.

How can an iPaaS help you with your GDPR efforts? Let's put this out in Q&A format with illustrations.

Q: Why would my business need Compliant Cloud iPaaS?

A: iPaaS is quite commonly the place that runs your APIs and process automation, thus enabling the digital backbone. Are you handling Personally Identifiable Information (PII)? If you do, you should consider it. Read more about the GDPR aftermath of the Schrems II ruling from here.

Q: What would the architecture look like when going for the Compliant Cloud?

compliant cloud architecture

A: Like in the image above. You can run iPaaS core (Frends) in the Compliant Cloud from,e.g., fully EU-owned City Network's Compliant Cloud (OpenStack). The execution unit may also run in on-premises = hybrid cloud.

Q: But we don't want to put all eggs in the same basket. How can we use multiple clouds?

compliant multicloud

A: It is not a problem, as long as you keep the iPaaS core storing the logs and running APIs and automation that handle PIIs in the compliant cloud (like the image above illustrates). You can publish APIs and automations in any cloud you want and have them even in a container environment if you wish.

You can read more about the benefits of the multi-cloud approach here.

Q: There are two log storages in the compliant cloud; why?

A: The compliance can be achieved with one storage, but it might be easier to protect the GDPR data when you store them clearly in separate databases.

Any questions that we have not covered? Do not hesitate to reach us, and our consultants will help you navigathe the world of integrations in a compliant cloud!

share