|
|
Security issues when working with employees' personal data (PD) are becoming even more important. In 2022, the number of personal information leaks increased fivefold compared to the previous year. 311 databases with various information concerning 100 million people were made publicly available, according to a Group-IB report . In 2022, business losses from one data leak averaged $4.35 million, IBM calculated .
These statistics force companies to content writing service be even more careful when working with employee personal data and implementing solutions that affect it. This applies not only to customer information, but also to employee data.
Today, organizations from various sectors of the economy are actively implementing personnel electronic document management (PEDM). According to our data, in 2022, the Russian HR EDM market grew fourfold:
In 2021, about 180 thousand company employees used digital documents; in 2022, more than 700 thousand.
Currently, more than a million people in Russia sign work-related documents remotely. In the future, 55 million may switch to KEDO, primarily full-time employees of various companies and freelancers (self-employed people working under a civil-law contract).
Let's figure out what to pay attention to when choosing an IT solution for digital HR document management and how to implement the project in such a way as to ensure the maximum possible protection.
CLOUD OR ON - PREMISE
When working with personal data, it is important to comply with Federal Law 152-FZ . Companies must store this type of information in Russia in a specially protected IT infrastructure - the requirements for it are regulated by the order of the Federal Service for Technical and Export Control (FSTEC) No. 21. You also need to register with Roskomnadzor and obtain consent from employees to collect and process personal data.
If the company has an infrastructure that complies with the Law on Personal Data, then the KEDO platform can be hosted on its own servers – on-premise. If not, then it is advisable to use a cloud solution, in which case the provider guarantees operability and basic security.
Building an infrastructure that is protected by all standards requires significant investment
Which option is safer? The question is ambiguous. Large companies that are able to maintain a modern IT infrastructure and a staff of highly qualified specialists to service it can independently ensure a high level of protection. When installing on-premise, dockers are used to deliver applications and launch them in an isolated environment, and the solution is updated in a safe mode.
If a company is not ready to invest significant resources in building and maintaining such an IT infrastructure, it is safer to use a cloud version of the solution. The company's data is stored in isolation, and backup copies of the application are saved automatically on a regular basis.
|
|
發表於 2024-11-9 14:33:54
收藏