your actions have to be proper to the character of the non-public data you maintain and also the hurt That may result from any compromise. Pseudonymisation and encryption are laid out in the UK GDPR as two samples of steps Which might be appropriate for you to definitely apply. https://storeallyourdigitalassets70357.gynoblog.com/29175681/how-to-store-all-your-digital-assets-securely-online-london-england-no-further-a-mystery