Using SQL Server Transparent Data Encryption (TDE) with Dynamics NAV

Original URL…

Over the last few months, the Dynamics NAV team has been testing compatibility with SQL Server Transparent Data Encryption (TDE), and we are now proud to announce that the following Dynamics NAV versions all support SQL Server Transparent Data Encryption (TDE):

  • Microsoft Dynamics NAV 2018
  • Microsoft Dynamics NAV 2017
  • Microsoft Dynamics NAV 2016
  • Microsoft Dynamics NAV 2015

With TDE, you can encrypt sensitive data in the database and protect the keys that are used to encrypt the data with a certificate. TDE performs real-time I/O encryption and decryption of the data and log files to protect data at rest. TDE can assist in the ability to comply with many laws, regulations, and guidelines established in various industries.

At the time of writing, Transparent Data Encryption (TDE) is available in Enterprise Edition of SQL Server as well as Azure SQL Database.

Read more about Transparent Data Encryption (TDE) for Dynamics NAV here:

https://docs.microsoft.com/en-us/dynamics-nav/transparent-data-encryption

Anuncios

NAV GDPR Tools In Action (@NAV 2018 CU4)

Original URL…

NAV GDPR Tools In Action (@NAV 2018 CU4)

Hi Guys,

I have published several posts on the GDPR, we are currently implementing it from several customers, many people still ask me for information on the subject. I have already talked about what to do for the old versions of NAV (which are no longer under maintenance)

But yesterday … the CU4 of NAV 2018 was released (and the other CUs for NAV 2015. 2016, 2017) which includes the TOOLS useful for GDPR. The technical\application modifications have been introduced since CU3, from the CU4 onwards all the necessary tools will be inserted.

PS: Soon my article relational to the GDPR Topic will be published on NAVUG Magazine (article prepared before the CU4 of NAV 2018, therefore generic)

In this post (as promised yesterday in the post on the publication of the CU4 of NAV 2018) i will explain what has been done in CU 4 and how the GDPR tools work.

NAV 2018 CU4 GDPR Tools

If you set this profile you can access to “Data Privacy” menu

PROFILE -> Administration & Security

DATA CLASSIFICATIONS -> Data Classification Worksheet

From this it is possible to classify sensitive data (as described in the GDPR Whitepaper issued by Microsoft), field by field for standard and other custom tables.

It is also possible to set the sensitivity of the data in a massive way, Microsoft has set a standard (base) classification that must be verified and validated.

 

EXAMPLE

Set Data Privacy on Customer Table

SETUP DATA CLASSIFICATION (WIZARD)

It is possible to export and import from Excel, importing from Excel is useful if you have made a map of the data required for processing (sensible and personal date types).

WIZARD IN ACTION!

Choose the right option!

SAVE TO EXCEL

DATA PRIVACY UTILITY

With this button you can execute two functions:

Export data of the subject

Creation of a configuration package (yes, Microsoft has decided to use the old package introduced in NAV 2013 to export import data and manage the cancellation of data…)

Example
Creation of a configuration Package for “Employee” table

SENSIBLE DATA DECTIONFILTEREXPORT

Now you can export sensitive data detected in the system using this Wizard, you can filter what you need.

TYPE OF DATA

  • Sensitive
  • Personal
  • Company Confidential
  • Normal
  • Unclassified

FILTER ON DATA SENSIVITY: “ONLY SENSITIVE DATA” in this case

GENERATE PREVIEW

You can extract data in Preview Mode before exporting it, you can check it before exporting it to Excel

EXPORTING TO EXCEL FUNCTION

After exporting to Excel the system logs what has been done (AUDIT & LOGGING FEATURE)

CREATION OF NEW CONFIGURATION PACKAGE

it is possible to create a new configuration package from this wizard

And.. BINGO!!!

..THIS IS A PACKAGE WITH SENSITIVE DATE

Should I encrypt it? NO, it’s not clear, it’s already in binary code.

DATA PRIVACY ACTIVITY LOG

Each activity is tracked and written in the log (as required by the GDPR)

CHANGE LOG ENTRY

You can activate use the old Change Log Entry to track changes to the data (function existing from the first versions of NAV). Take a look at my old post if you do not use it.

My Post about “Track activities Change” in NAV https://robertostefanettinavblog.com/2015/06/09/nav-2015-tracking-sessions-users-activity-change-log/

NAV – Supporting Your EU GDPR, Compliance Journey

Dynamics NAV-GDPR-Whitepaper.pdf

On May 25, 2018, the General Data Protection Regulation (GDPR) comes into effect. GDPR is a European
privacy and security law that establishes a new global standard for privacy rights, security, and
compliance. If your organization is a Microsoft Dynamics NAV customer or partner and a data processor
or data controller as defined by the GDPR (see
the GDPR Glossary online
for definitions), then this white
paper is addressed to you.
The GDPR is fundamentally about protecting and enabling the privacy rights of individuals. The GDPR
establishes strict privacy requirements governing how organizations manage and protect personal data
while respecting individual choice—no matter where data is sent, processed, or stored.
Microsoft and our customers are now on a journey to achieve the privacy goals and mandates of the
GDPR. At Microsoft, we believe privacy is a fundamental right, and we believe that the GDPR is an
important step forward for clarifying and enabling individual privacy rights.
Although your journey toward GDPR compliance may seem challenging, we are here to help you. For
specific information about the GDPR, our commitments, and to begin your journey, please visit the
GDPR section of the Microsoft Trust Center.