Data protection by design and default

As part of getting your making your site GDPR ready, your site may need to encrypt personal data for your users during any transfer of the data. The General Data Protection Regulation (GDPR) requires that customer data is encrypted during all communications, internal and external.

Your organization is responsible for implementing any appropriate technical or organizational measures to ensure the encryption of personal data during any communication or processing of personal data.