• Välkommen, Bienvenida, Welkom, Bem-vindo, Dobro dosli!

    Data protection in the EU is becoming consistent – and stricter.

  • 72 hours: That’s how long you have for notification.

    eperi solutions can reduce the scope of the GDPR.

  • 4 % of worldwide annual turnover as a penalty.

    eperi solutions can reduce the scope of the GDPR.

  • Pseudonymization is clearly mentioned in the GDPR.

    And may serve to reduce the scope.


The EU General Data Protection Regulation (GDPR) has finally moved data protection into the focus of companies. It will be a win-win regulation: EU citizens will have more control over the protection of their privacy and businesses will have legal certainty. But for those who process personal data, the regulation mainly means: paragraphs about paragraphs, expensive conversions and the documentation of all data security measures.

The biggest problem for companies using cloud services: they are responsible for the security incidents at cloud providers but cannot fulfil their control obligations. And there’s no contract that can release companies of this responsibility. Specifically, this means: If a security incident occurs with your cloud provider, then you as a company are liable for 4 % of your worldwide annual turnover and must inform all your customers and employees within 72 hours. Reputation damage is inevitable.

So what can you do – do you have to turn your entire IT structure upside down? Of course, you don’t. And if you take the right approach – for example with a solution from eperi – you not only reduce your business risk, but also create further customer confidence through good data protection.


With eperi Cloud Data Protection solutions you comply with GDPR regulations and also minimize the scope of documentation and reporting. The eperi Gateway pseudonymizes all personal data before it leaves your company. In the cloud, only unreadable garbage data is stored and processed, while your end users can continue working unchanged. This works for standard cloud applications such as Office 365 or Salesforce as well as for database applications and even your own web apps and cloud storage.

Lawyers agree: the eperi Gateway reduces the scope of the GDPR. Personal data that has been pseudonymized may be outside the scope of application, as they no longer contain any personal reference.

With eperi solutions you retain control of your data, no matter where it is processed. Your documentation effort for the GDPR is thus drastically reduced. In addition, your employees, partners and customers are on the safe side in the event of a data breach. The bonus for you: normally you would have to inform affected data subjects in case of an attack. However, if the data cannot be used due to pseudonymization, this obligation does not apply – and you are spared a costly and potentially damaging mailing.

The eperi Gateway is your central, simple point of control with which you can enforce compliance guidelines. Which data is pseudonymized or left in plain text? You can use the eperi Gateway as exactly the right, high-performance and flexible security solution.

What the eperi Gateway does

  • Can reduce the scope of the GDPR and, in the event of a data breach, prevent 4 % of worldwide annual turnover as a penalty and 72 hours reporting requirement

  • Reduces the scope of testing and documentation for GDPR compliance

  • Easy compliance with central GDPR guidelines

  • Pseudonymization of sensitive data before it is transferred to the cloud

  • Exclusive control over encryption and key management

  • The eperi Gateway offers a transparent data control layer according to the GDPR principle of Privacy by Design and by Default

Learn more:

Case Studies, E-Books & Whitepapers


Do you have any questions about eperi Cloud Data Protection solutions?