FileMaker & the General Data Protection Regulation (GDPR) part 2: how much can a single e-mail cost you?

Ben Fletcher • Jan 29, 2018

As we count down to the 25th May 2018 when the General Data Protection Regulation (GDPR) comes into full effect, it is useful to keep an eye on real world examples of issues that are likely to crop up and tie that back to a scenario which could realistically be seen within a typical FileMaker solution. If you haven't read our first post on GDPR preparation for FileMaker users then click here.


A common use of the FileMaker platform is customer relationship management, tracking enquiries and the conversion into actual customer, managing the logistics and billing of that work. It would be unsurprising for many FileMaker solutions to have customer names, record IDs/account codes and an e-mail address.

It is very common, when talking about data breaches for people to usually think of the dangers of 'rogue hackers'/external threats, when in reality it is more often the internal threats posed by negligent or disgruntled employees. See https://inform.tmforum.org/features-and-analysis/2016/03/defending-your-data-securing-against-internal-and-external-threats/ for more discussion on this.

With this in mind, when I was reviewing examples of recent fines and enforcement rulings on the Information Commissioner's Office, one recent ruling immediately jumped out as it struck me as being so relevant to many typical FileMaker based CRMs:


18th January 2018 - SSE Energy Supply Ltd

See https://ico.org.uk/action-weve-taken/enforcement/sse-energy-supply-ltd/

Essentially, SSE Energy Supply Ltd made a very simple mistake: one of their customer service team e-mailed the wrong account number and surname to a SINGLE customer. While this was recognised as a data breach and internally logged, it wasn't reported to the ICO within the required 24hrs of being logged and so subsequently SSE Energy Supply Ltd was issued with a fixed penalty fine of £1,000 - ouch!

FileMaker scripting can be used to fully or semi-automate email responses using standard templates for common queries, meaning that there is much less potential for these kinds of data transcriptions errors which can lead to an accidental internal data breach.

If you are interested in finding out more about how the FileMaker platform can be used to secure data privacy or need assistance with modifying your system to meet GDPR then contact our consulting team for assistance.


by Ben Fletcher 17 Nov, 2023
New Features in Claris FileMaker 2023 (version 20.3) Release
by Ben Fletcher 08 Sept, 2023
Reflecting on Claris Platform's Roadmap: What's Next in 2023 and Beyond
by Ben Fletcher 06 Jun, 2023
The Claris FileMaker 2023 is the ultimate platform for custom app creation. Given its advanced features and capabilities, it's the platform of choice for those seeking to start fresh building a new custom business app. However, if you're thinking about upgrading from an older Claris FileMaker version, preparation is key, and that's where we come in . . .
by Ben Fletcher 27 Apr, 2023
New Features in Claris FileMaker 2023 Release
by Ben Fletcher 01 Feb, 2023
Free tier access to the Claris Platform is coming!
by Ben Fletcher 01 Dec, 2022
New Features in Claris FileMaker 19.6 Release
by Ben Fletcher 28 Nov, 2022
Claris Server managed private cloud hosting now available from datatherapy.host
by Ben Fletcher 24 Nov, 2022
The new Claris Platform represents the latest evolution of the venerable Claris FileMaker Platform. While the FileMaker Platform is a powerful and flexible toolset, it was originally launched in 1985 and conceived to solve the data problems of that era - predating much of the modern internet staples that we are familiar with today like pervasive broadband, mobile computing and cloud services. While an impressive number of new features have been added to the FileMaker platform to modernise it over the years, there were always going to be some areas where it was not an optimal solution given the need to maintain compatibility with previous releases. The new Claris Platform focuses on offering a new approach to building unified, hybrid apps with a more cloud native approach. Central to this new offering is Claris Studio, a web-based tool for building online web forms, dynamic charts, dashboards and task trackers (see https://www.claris.com/studio/ ). Historically, these are all areas that the FileMaker platform has served poorly out of the box, or has required substantial developer effort utilising 3rd party plugins or integration with other apps and cloud services to work around. The new Claris Platform bundle therefore significantly extents what would be possible with FileMaker alone. I t is well worth looking at these Claris Youtube videos exploring the new platform https://youtube.com/playlist?list=PLkvKnBkQSCeTE1hT4FJkCJ_foOOq_DBIe However, Claris Studio does not integrate with classic FileMaker Pro and FileMaker Server - instead it works with Claris Pro and Claris Server. In order to get Claris Studio to market and in the hands of developers as quickly as possible, Claris have had to make some compromises and so narrowed their initial platform support and features. This means that while Claris Pro and Claris Server have most of the core features of FileMaker Pro and FileMaker Server there are some important differences - while the new Claris platform is an excellent fit for most new development projects, it is not yet a 'no-brainer' upgrade for existing FileMaker customers that are reliant on some of the older features which are not yet present in the new platform. Two deciding limitations for many existing FileMaker customers are that: 1) Claris Server only currently runs on the Linux platform - there is no support for running on macOS or Windows servers currently. 2) By design the new Claris Platform needs internet access in order to integrate with Claris Studio and so cannot be 'LAN locked' which may be the case for certain FileMaker solutions due to strict security as can be found in healthcare environments or with very high performance solutions such as video environments. If you don't have expertise in deploying Linux servers or moving from a LAN to cloud environment then this can be mitigated as it is perfectly possible to get a 3rd party managed private cloud hosting. This is exactly the service that DataTherapy can provide - see https://datatherapy.host/pricing for more details. Contact our team if you are interested in a demo of the new Claris Platform offering and a FREE initial consultation about how to migrate from from your existing FileMaker based solution in order to take advantage of the new Claris Studio features.
by Ben Fletcher 16 Jun, 2022
New Features in Claris FileMaker 19.5 Release
by Ben Fletcher 17 Dec, 2021
We can confirm that our Platopus platform does not make use of Java and so is unaffected by the Log4j security vulnerability.
More posts
Share by: