re: What are some fundamentals of security every developer should understand? VIEW POST


In Europe we must comply to GDPR which is coming into practise in the next few months. We’ve had to implement what you mentioned on every single system which holds more than one piece of identifying information about a user.


What did you do, just hash or encrypt everything? We are facing the same right now.

Not everything, just database tables containing personally identifiable information. You’ll want to encrypt this information rather than hash it, as you’ll more than likely need to retrieve it at a later date. Here is a good read which explains the legislation in more detail:

code of conduct - report abuse