We help make Google Workspace safer for everyone.

How GAT+ keeps you GDPR Compliant

The ability to show that your student, staff and customer data is not carelessly exposed via file sharing or email attachments is essential for GDPR compliance.

To achieve that, regular and scheduled testing of all content and shares should be carried out.

How GAT differs from its competitors in GDPR compliance:

GAT exhibits several key differentiators that make it the most suitable tool for GDPR compliance testing and enforcement in the Google Workspace marketplace.

(Our competitors in this area lack these key features)

How GAT ensures it is GDPR compliant:

Given its access to all aspects of your Google Workspace environment, the GAT Suite itself must respect the GDPR environment for your data.

Our well thought out and sophisticated design that pre-dates the GDPR requirements means we have always coded to ensure no or minimal customer content ever has to pass through our architecture. 

Finally, all idle databases are automatically deleted 30 days after last use. There’s no metadata harvesting for future use.

GAT does this in several ways. The only data it collects and stores is your user metadata.

This consists of username, company email address, access times, email addresses to and from the user account, email metadata, Google + postings with the domain account, files owned, calendars and appointments in the company domain, and other non-specific usage data (such as membership of email groups, OUs, etc.).

It does NOT collect any file or email content. It does not transfer any content to its servers for inspection — this is critical.

While other tools do this for content inspection, GAT+ avoids that and can still search content. GAT Shield, which is designed to look in real-time for sensitive content, can also search and report on content without that content ever having to pass through our servers.

GAT+ ensures that utmost data protection measures are enforced.

Additionally, from time to time admins or security staff need to inspect online content which may belong to other staff members or customers.

This must be carried out in a structured and approved workflow, which GAT provides.

GAT Unlock is the ONLY solution in the Google Workspace Marketplace that offers  such a structured workflow.

This ensures that access to all content is approved by properly appointed Security Officers within the company.

Data leakage can occur not only via email and document sharing, but also via the browser (using cut and paste into any other web page the user is logged into on their browser).

Detecting this dynamic flow of sensitive information is critical to ensuring proper compliance with GDPR.

GAT Shield is designed to ensure that exactly, watching and alerting in real time.

GAT Shield is designed to look in real time for sensitive content.

It can also search and report on content without that content ever having to pass through our servers.

Our sophisticated design ensures none or minimal customer content having to pass through our architecture.

All idle databases are also automatically deleted 30 days after last use. There’s also no metadata harvesting for future use.

Does the GDPR require processing of personal data in the EU?

No. As the 95/46/EC Directive on Data Protection, the GDPR sets forth certain conditions for the transfer of personal data outside of the EU. Such conditions can be met via mechanisms such as model contract clauses. 

Want to know more?

Contact GAT Labs today for a FREE trial or a live demonstration of all our products’ features.

It has never been easier to do more, see more and protect more, wherever your Google Workspace and Chrome users are in the world.