Did you know: All DataLocker products are TAA Compliant?


All DataLocker products are TAA Compliant meeting the Trade Agreements Act (TAA) for procurement of goods and services for federal contracts that are assembled in the U.S.A. or other approved TAA-designated countries.  What does this mean to you?  It means that the products we sell cannot be made in China, India, or Russia, for example.  The Trade Agreements Act (19 U.S.C. & 2501-2581) of 1979 was enacted to foster fair and open international trade, but more importantly, it implemented the requirement that the U.S. Government may acquire only U.S.-made or -designated end products.

By meeting and adhering to these standards, DataLocker demonstrates confidence in the value, quality and craftmanship of its products.  As a result, DataLocker products are authorized and approved for purchase by government entities.

Through TAA Compliance, we are doing our part to grow the American economy.  To that end, we are preparing to move our production to a new factory owned by Memory Experts, and they manufacture for other companies in addition to producing their own line of products.  All products are manufactured to a 99.899% quality standard and meet both ISO 9001 and ISO 14001 industry-specific guidelines as well as RoHS and FCC – along with being assembled in the United States for TAA compliance.

If you are interested in speaking with someone from our Federal Sales team about how DataLocker encrypted solutions can enhance security and make compliance a breeze, please call Federal Sales at (202) 827-6200.


How to take control and manage your secure USB drives

The USB drive is everywhere- they can be purchased at every check out counter from office supply stores to convenience stores.  They are portable, small and can hold a relatively large amount of data and make data transport a breeze between office or school and home.  But with portability comes inherent security challenges.

USB device theft, accidental loss and the spread of malicious code can lead to data breaches, compromised customer information, loss of intellectual property and a loss of consumer and even stakeholder confidence. Unsecured and unmanaged USB drives have the potential to becomes digital weapons, as they are the perfect vehicle for delivering malicious programs and viruses. Unsecure USB drives can easily have their firmware rewritten, thus enabling them to inject code into every computer they come into contact with.  Often the owner isn’t even aware that their USB device has been compromised, so they continue to share the infected USB drive.

It may surprise you to know that only 50% of companies have a USB device usage policy, and only about one-half of those companies actually enforce their policies (The State of USB Drive Security, Ponemon Institute, sponsored by Kingston, July 2011).  If you don’t have a data security and management plan in place…you’re not alone.  But- there are things you can and should do to take immediate action! Properly managed, secure USB drives can be a useful tool for companies, and whenever that data becomes portable, a comprehensive plan becomes paramount to the success of data security.  There are several things to consider as part of your planning:

  • How do we get devices connected to a server and under the control of management?
  • Who is ultimately responsible for the devices?
  • Is the end solution compliant with legislation and the organization’s policies?
  • Does the security solution “make sense” for the real world?
  • What does the future hold for this technology?  Is it likely to be supported in years to come?
  • Does our strategy secure ALL of our digital assets, including secure USB drives?

Hardware encrypted USB flash drives are an essential component of a comprehensive data loss prevention (DLP) strategy. DataLocker offers both FIPS 140-2 level 3 devices and standard secure USB flash drives.  All secure USB flash drives from DataLocker can be managed by the SafeConsole central management system which offers enforcement of password policies, remote password resets and audit for compliance and much more.  For additional information or to learn more about our products, please contact us.

Developing a strategy to deploy and secure all digital assets along with implementing the right central management system will create a seamless, secure workflow solution.  It is incumbent upon organizations to mitigate the potential for a USB data breach, which could cost millions in the long run.



Implications of GDPR on portable data storage


GDPR refers to the European Union’s General Data Protection Regulation. GDPR means that organizations that handle EU citizens’ data face massive fines (up to 4% of their global annual turnover) if they are non-compliant.

It’s important to note that a company or service provider with no physical EU footprint still has to comply with the EU data protection legislation…if it processes EU citizens’ data.

There are inherent risks associated with portable storage, so it is valuable to note how to implement GDPR from a practical standpoint.  The new standards all but ensure that lost portable storage devices and other such security breaches will be reported to regulators going forward.  This serves to protect consumers and clients, who have a right to know when they have been compromised or hacked. Reporting looks somewhat different for data that is unlikely to result in a risk for the rights and freedoms of an individual (an unencrypted USB flash drive containing patient information, for example).

GDPR tells us that organizations should protect data at a level that is attainable using current technology, and at a reasonable cost (financial and time).

So, as a global expert within encryption and portable data storage, what does DataLocker recommend to achieve compliance?

  • Have a solution that protects all stored data with automatic encryption and strong passwords.
  • Take care that only authorized staff have the rights to transport data.
  • Keep track of which data is transferred onto encrypted portable media.
  • Have a solution that only allows access to data in approved territories, as transborder data (that which is subject to foreign jurisdiction) is subject to additional restrictions.
  • Have the ability to permanently erase and all copies of a data subject’s stored information.
  • Centrally managed hardware encrypted portable storage that provides audit trail capabilities is the recommended solution.

The costs of NOT implementing a solid portable storage solution are too great to ignore.  The risk of noncompliance is not one worth taking!

*image credit: Termsfeed.com, appearing in an article by Leah Hamilton

Welcome to our blog!

data locker fb cover

Welcome to our new DataLocker blog.  We hope you’ll find it to be informative, useful and even a bit fun-  and that you’ll check back often and see what we’re up to.  You’ll find the latest from our teams all over the globe.  We’ll share timely industry updates, product information and the latest on data security solutions. We love to stay involved and engaged with the communities in which we live, work and play; so we’ll let you know what we’re out and about doing. CTO David Kim, CFO/COO Michael Yim or any of our team members might chime in with their thoughts on the latest DataLocker or industry news as well.

If you’re new to our website or new to DataLocker, hello. Here’s what we’re all about: Innovation. Innovation is the cornerstone of our data security solutions. And innovation drives solid results.  Our work encompasses:

Encrypted Storage – this includes encrypted hard drives, encrypted USB flash drives, encrypted media and cloud encryption gateway.

Central Management – IronKey EMS and SafeConsole, both available as a Cloud or On-Prem solution, to quickly and easily establish a secure storage command center for administering and policing all your encrypted endpoints.

Solutions – Customers from many sectors trust us to protect their sensitive data. Our customers include military and government, finance, energy, legal and healthcare sectors.

Get to know us!  We hope you’ll follow our blog and check back often.  Feel free to contact us– we’d love to hear from you.

-Jay Kim, CEO

Jay Kim is the founder and CEO of DataLocker, a leading provider of data security solutions. Since founding the company in 2007, Jay has led DataLocker to be among the most recognized providers of data encryption systems. With customers in over 30 countries, DataLocker devices are trusted to secure sensitive information for customers such as the US Air Force, Federal Reserve Bank, NASA, Lloyds Bank and the US State Department.