If any of People applications access and retail store PII, they need to do this in the GDPR-compliant way. That’s challenging to control, specially when you Consider each of the unauthorized applications staff use. The RSI security blog breaks down the techniques in a few detail, but the procedure in https://fismacomplianceinusa.blogspot.com/
