KernelCare and GDPR

The General Data Protection Regulation (GDPR) (EU) 2016/679 is a regulation in the EU law on data protection and privacy for all individuals within the European Union. It also addresses the export of personal data outside the EU. The GDPR aims primarily to give control to citizens and residents over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU.

This law was brought on when the Information Commissioner’s Office (ICO) wanted to protect EU citizens’ personal data from data breaches due to poor patch management. They’ve determined that the simplest way to protect against hackers and data breaches is to have a more secure cyber network through patch management.

The ICO recognized the importance of patch management and having an effective information security management system in place when creating the GDPR. They’ve determined that when implemented correctly, five key controls can stop most cyber attacks. Those key controls are:

• Patch Management
• Secure configuration
• Boundary firewalls and Internet gateways
• Access controls and administrative privilege management
• Malware protection

For the last six months, we were actively working to make all parts of our company GDPR compliant. We have also updated our Privacy Policy and Terms of Use. KernelCare is a product of CloudLinux – please read this blog post about our GDPR compliance.

About KernelCare

KernelCare is a live patching system that patches Linux kernel vulnerabilities automatically, with no reboots. It’s used on over 300,000 servers, and has been used to patch servers running for 6+ years. It works with all major Linux distributions, such as RHEL, CentOS, Amazon Linux, and Ubuntu. It also interoperates with common vulnerability scanners such as Nessus, Tenable, Rapid7, and Qualys. To talk with a consultant about how KernelCare might meet your enterprise’s specific needs, contact us directly at [email protected].