Don’t worry, I’m not going to go too deep into the technical and operational side of what encryption is but I do want to point out that the GDPR requires you to use it.
In the very early days, Julius Caesar used encryption. By sending secret notes he moved letters up 3 spots and the receiver knew to go back 3 spots for each letter to decrypt the message. Obviously, this was easily deciphered but thank goodness nowadays we have a more sophisticated way of encrypting that is a lot more difficult to decrypt. And since this is a nutshell, this is about as in-depth as I’m going to go in this blog.
We all hope we’re not subject to one (either as controller or as data subject) but most likely in one way or another you will have witnessed a data breach at some level at one point.
A 'personal data breach' means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data transmitted, stored or otherwise processed.