Can a developer have access to live data within GDPR?
I am looking for the regulation regarding the Segregation of Duties in GDPR. I find article 25 concerning "Data protection by design and by default" and recital 78 which touches on developers' roles, however, I'm unable to find the part that denies a developer access to live data. Is it clearly stated somewhere? May I have misunderstood something? Why would you not want to have the development <-> production separation? If you are a consulting company running many small client systems and the systems include development and production where the clients do not want to have their own IT staff. You would develop the system, deploy it in the cloud and thereafter occasionally administer the live system. Having many systems to develop and administer you can see the potential overhead of separation of duties.
Answer This Post
Login into your account and answer this post