GDPR Compliance Guide

Thank you for reading the OneSpan Authentication Server Appliance General Data Protection Regulation (GDPR) Compliance Guide. The purpose of this guide is to provide you with information how GDPR is impacting OneSpan Authentication Server Appliance.

This guide is not intended to inform you in detail about GDPR and its possible impacts other than where OneSpan Authentication Server Appliance is concerned. For more and detailed information about GDPR, refer to the official publications by the European Union.

Who should read this guide?

This guide is designed for IT managers, system administrators, security officers, and data protection security officers who are using OneSpan Authentication Server Appliance and/or its side products. You should be familiar with:

• Online authentication and authorization tools and protocols, including SOAP, RADIUS, WSDL, SSL, XML, HTML, and TCP/IP.
• Administration tasks including user management, policy, scheduling, reports, and performance monitoring.
• Password management and encryption techniques.
• EMV-CAP and other e-commerce transaction standards.

The aim of this guide is to improve your understanding of OneSpan Authentication Server Appliance and the following aspects in the context of GDPR:

• User account management
• Data encryption and protection
• Data erasure and export
• GDPR-compliant setup of OneSpan Authentication Server Appliance