Kryon Systems logo

The Kryon Automation Suite and GDPR

The Kryon Automation Suite and GDPR

What Is GDPR and Why Is It Important? The European Union’s (EU) General Data Protection Regulation (GDPR), which came into force on 25 May 2018, is widely seen – and correctly so – as one of the most stringent data privacy regulations ever devised. Its purpose is to allow individual citizens of the EU and European Economic Area (EEA) to exercise a high degree of control over their personally identifiable information (PII), as well as to simplify the regulatory environment for international businesses by harmonizing data regulations throughout the EU. The GDPR lays out exactly how businesses may store, access and process the personal data of EU citizens, even if the actual data processing takes place outside of the EU. It states that data cannot be processed unless the data subject has given explicit and informed consent, and that the data subject can freely withdraw this consent at any time. All enterprises involved in the collection of EU citizens’ data must ensure that their technology is GDPR compliant, and the field of robotic process automation (RPA) is no exception. Because RPA technology records business data as a matter of course during the automation process, the Kryon Automation Suite incorporates a broad range of features to deliver GDPR compliance that you can trust.

Top Security Certifications

The Kryon Automation Suite has obtained the following security certifications:

  • ISO 27701
  • SOC2
  • ISO 27001
  • ISO 9001

Data Protection

The Kryon Automation Suite protects data in the following ways:

  • By saving all data in the customer’s on-premise or private cloud environment and not on Kryon servers.
  • By strongly encrypting data using the AES, TLS and FIPS protocols, both at rest and in transit.

Handling of Personal Information

The Kryon Automation Suite prevents the collection of personal data in several ways:

  • Any screen information collected during robot runtime is immediately terminated and cannot be recovered.
  • Information contained in screenshots captured during the design stage can be permanently masked to ensure that it cannot be seen.
  • Information collected by Kryon Process Discovery™ robots can be automatically masked.
  • Specific applications can be defined as included nor excluded from Kryon Process Discovery™ and RPA projects to prevent the collection of personal nor confidential data such as passwords.

Security & Privacy

The Kryon Automation Suite offers these additional safeguards to maintain data security:

  • Granular role-based access control to all system tools and components using multifactor authentication, as well as support for the latest authentication protocols such as Kerberos, LDAP, OAuth, SAML 2.0 and OpenIDConnect.
  • A credential vault to ensure the secure storage and management of user credentials.
  • Multi-tenancy support for data segregation between internal teams and organizations.
  • Detailed audit logs to support any audit process and forensic analysis, which are highly configurable and easily integrated with any audit tracking system.