Medical University of Gdańsk

Data security system implementation for the Medical University of Gdansk

Introduction date

December 2018

Sector

Education

Service type

Security and IP Networks

MODERN DATA SECURITY SYSTEM

 

Medical University of Gdańsk is one of the largest schools of higher education in the Pomeranian region. A few thousands of users, such as: staff, doctoral and other students, and the cooperating companies use its network infrastructure in the rush hours. The service provided by GUMed network includes not only very fast access to the Internet but also to dedicated systems, i.e.: virtual students’ office, FK system, and very well-functioning online services.

The solution had to secure the systems against new vector attacks, the maximum of security for the services and data, whereas meeting all the RODO requirements, in particular:

  • network level security against files and documents containing sensitive information such as credit card numbers, personal identification numbers (PESEL) and tax identification numbers (NIP) against leakage outside the company’s domain, by means classification and contents circulation control on various communication channels; 
  • network security against the leakage of files and documents subject to RODO outside the company’s network, by means of classification and contents circulation control on various communication channels; 
  • encrypting communication channels via which personal data are transmitted;
  • controlled insight into encrypted transmission between stations and servers (cloud) in order to detect attacks, threats and information leakage;
  • maintaining the requested encryption level;
  • protection against the unknown threats;
  • detecting malware which may cause information leakage;
  • setting the rules for controlling the access to application and users’ resources;
  • analysis of any potential breach of security of the information subject to RODO, involving logs storing and reporting;
  • possibility to detect any material correlated events, security incidents, dangerous trends and data leakage in security systems;


Apart from the aforementioned requirements for hardware and software, Sprint has implemented advanced services supporting RODO requirements:

  • organized trainings for IT workers concerning personal data protection and anonymization, based on the offered system,
  • in cooperation with the customer, has determined procedures for securing personal data;
  • has configured the system in compliance with the defined procedures and client’s requirements as for RODO support.
Modern system
Guaranted security
Authorized access

Benefits

Security
Thanks to the solution implemented by Sprint, IT security infrastructure in the Medical University of Gdańsk fulfills all the high standards for IT systems security.
GPRD
Sprint has implemented procedures assuring network security against the leakage of files and documents subject to RODO outside GUMed domain.