(Not so) Stupid Question 303:Does the GDPR require two-factor authentication from companies processing personal data?

added by DotNetKicks
10/9/2017 1:59:50 PM

1 Kicks, 100 Views

This question is tricky, because the answer isn't as clear as with the previous question. The answer is: it depends. A company should take 'appropriate measures'- but what is appropriate, who decides this? And how? To answer the GDPR question we need to define what appropriate measures is.