What is GDPR?
The General Data Protection Regulation (GDPR) is a regulation by which the EU intends to strengthen and unify data protection for all individuals within the European Union (EU).? It is set to replace the Data Protection Act of 1998.? The GDPR will apply in all EU member states from 25 May 2018.
What do I need to do?
I would suggest you address the changes to General Data Protection Regulation for Marketing as soon as you can and be prepared?don?t just wait until May to sort it out!? If you want to read more in-depth, click here and read my client blog.? Alternatively here are a few things to bear in mind that might get you started?
1 ??Think about what data you are collecting.? You might not think you collect any, but if you use Google Analytics, you collect data about who visits your website ? even their IP address.? Quick Fix get a privacy policy on your website that indicates how you use any data you collect.
2 ??You need to explicitly ask permission to send someone email marketing.? They must opt-in.? It is not OK to assume you have permission, hide it in your privacy policy, or have a box that someone must untick.? They might once have been allowed, but they?re not anymore.? get consent now?don?t wait for the deadline.? On website contact forms/registration forms etc make sure you add tick boxes so people can ?opt-in?
3 ??It is now not only their permission you have to ask for, you also need to record when they gave you permission and log when they opted in.? If you get an email notification when someone registers that may be enough, but you must keep the email secure.
4 ??People have the right to tell you to stop marketing to them and you must make it easy for them to opt out of any future email marketing.? Make sure you have that unsubscribe button on your email.? ?If it is a printed mailer, make sure you have a phone number/address that people can contact to stop receiving things.? Make sure you keep a list of their details and stop sending them things, otherwise you could face a big fine.
5 ??Is your website secure?? Does it have a little padlock symbol in the address bar, or did you get an SSL certificate?? If you store any data whatsoever on your website, you must have an SSL certificate, which encrypts the transmission of any data.? Even a contact form can be passing data, so it is safest to have one.? Ask your web designer about it.
6 ??You don?t need explicit consent to send a mailer, letter or brochure, provided you make it clear how they can stop receiving them in the future and the content is relevant to them.? This comes under ?legitimate interests of your business?
7 ??there is a misconception that GDPR only applies to personal data, but it applies to business data as well, even if you only email corporate email addresses the law still applies.
As a member of the?Chartered Institue of Marketing?it has been important to me to try to understand GDPR for my business, but also to advise clients as well.? I don?t know everything and am still doing lots of research and learning, but I hope that I can become more knowledgeable and in turn help my clients.
