Vanderbilt Industries
Download PDF version Contact company

In 2015, the EU launched the new “General Data Privacy Regulation”. This enters into force from May 25, 2018 and every company operating in one or more of the 28 EU member countries must abide by this regulation. As such, this will have a big impact on how companies handle of personal data.

Vanderbilt operates in a majority of EU’s 28 countries and processes all data in private and public cloud suppliers in the EU and USA. Therefore, the GDPR compliance is an important issue.

Data protection concept

Since the beginning of 2017, Vanderbilt has initiated several activities to comply with this new adjustment. As the EU regulation highly depends on the old German Data Protection regulation, Vanderbilt enlarged their already existing protection processes in Germany, and began to roll these out to offices in other European countries.

Vanderbilt assigned a Data Protection Officer on July 1, 2017. Until May 2018, to primarily develop and implement a data protection concept. This includes obtaining general agreements with all external suppliers to obligate them to store the relevant data and to operate according to the GDPR. Part of Vanderbilt’s agreement with suppliers is to get a list of third countries that might store data. Mostly, using the Vanderbilt’s GDPR compliant agreement for the commissioned data processing. If a supplier proposes their own agreement, Vanderbilt carefully checks the content to ensure that all GDPR requirements are reflected.

In the last broad cyberattack, Wannacry, Vanderbilt and selected providers could not report any violation of data usage

Software-as-a-Service products

A special area of focus is Software-as-a-Service products such as Vanderbilt’s ACT365 and SPC Connect. These solutions must also comply with the new regulation. As Vanderbilt operate and store personal data from customers, the company emphasises on the security and encryption of the processed data, the storage time of data, and the design of the privacy and data protection.

The actual GDPR will not be the final version as there are further needs yet to be addressed. For instance, the new obligation to inform the authorities about data privacy or security violations is on the right track, but it is not clear when an incident must be reported. Companies still have different interpretations of what is a serious or harmless incident.

To summarise, Vanderbilt are certainly on the right track but still have more to do. However, in the last broad cyberattack, Wannacry, Vanderbilt and selected providers could not report any violation of data usage.

Download PDF version Download PDF version

Vanderbilt Industries news

Vanderbilt Industries announce the launch of major update for its cloud-based access control systems, ACTpro 3.1

Vanderbilt Industries, a globally renowned company in providing state-of-the-art security systems, has announced the launch of the newest version of its cloud-based access control system, ACTpro 3.1. This update introduces key features representing Vanderbilt’s commitment to providing customers with a robust, scalable, and comprehensive access control platform. ACTpro access control system ACTpro is a network-based access control system that benefits from multiple integration scenarios w...

Vanderbilt Industries offer cloud-based security solutions for schools to enhance students and staff safety

School is out for the summer, but as the new school year approaches and students return to the classroom, the need for streamlined security solutions has never been greater. Not only are the typical procedures needed to protect against physical security threats, but the increase of demand for touchless solutions also plays a significant role in educational facilities reopening in a post-COVID society. Currently, over 90% of public schools are already using some type of access control and video...

ACRE acquires Time Data Security (TDS) to strengthen their product portfolio and expand business

ACRE, a provider of state-of-the-art security systems, announces the acquisition of TDS based in Dublin, Ireland. This purchase will enhance ACRE’s strategic expansion plans for strengthening the product portfolio and geography in the UK and Europe and bringing new cloud-based visitor management and access control products to North America. This is ACRE’s first acquisition since being acquired March 11 by Triton Partners. TDS provides cloud-based workspace solutions that will comple...

Vanderbilt Industries case studies

Oliver Law Security installs Vanderbilt ACT365 security system to protect one of Doncaster’s largest gyms, The Fitness Village

Doncaster Culture and Leisure Trust (DCLT), The Dome, required a new solution that would protect several areas, including one of the largest gym’s in Doncaster, The Fitness Village. Vanderbilt ACT365 system DCLT had a specific brief for this project that specified enhancing the staff and customer experience, while simultaneously providing access control solutions to restricted areas from the general public, members, and staff alike. Oliver Law Security (OLS) Ltd. did not hesitate to rec...

Vanderbilt secures a hospital in Ireland with access control integrated solutions

St. James Hospital in Dublin, Ireland, which has more than 1,000 beds, is a teaching hospital that specialises in not only treatment but health promotion and preventative services at its central location. It is also a central location for the treatment of COVID-19 patients. Tasked with keeping patients and staff safe from the threat posed by the COVID-19 pandemic, St. James Hospital needed a way to add additional screening capabilities to its facility alongside its existing access control termi...

Vanderbilt integrates ACT365 with Mobile BankID to enhance supermarket security at ICA Sweden

Installation company Nessence recently integrated Vanderbilt’s ACT365 cloud-based access control and video management system with Mobile BankID in Sweden. Mobile BankID is a citizen identification solution that allows companies, banks, and government agencies to authenticate and conclude agreements with individuals over the internet. The integration with ACT365 comes together to solve a brief put forward by the supermarket chain, ICA Sweden. Web API for integration Tobias Olofsson, Proj...