You may have heard about The General Data Protection Regulation (or GDPR as it’s more commonly known) coming into force on the 25th May 2018.
GDPR is a new EU regulation aimed at helping strengthen data protection for EU citizens and the wider world and will change the way that personal data is stored.
If you have a website the chances are you will need to implement some changes.
WHAT DO I NEED TO DO?
Companies that fail to comply with the new GDPR regulations by the 25th May 2018 run the risk of being fined up to 4% of their total business annual turnover if there is a breach.
We are not legal experts and cannot advise you on all aspects of GDPR and the ways in which it may effect your business, but we do know what security measures you need in place on your website to help protect your business, customers and their data.
HOW CAN WE HELP?
The actual GDPR legislation contains over 200 pages of documentation – so this is by no means a detailed guide of the law but more like a few tips to help get you started.
E commerce functionality (an online shop)
- Web forms
- A client login area
- A Content Management System
An SSL Certificate will ensure that the website is labelled as secure within the browser, as well as displaying a green padlock.
This not only complies with the new GDPR legislation but also helps to meet Google’s guidelines and also help improve a websites rankings within Google.
Please be aware that some third party suppliers only link an SSL certificate to the homepage and the form page, compromising the security of your site and not complying to Googles best practices.
Be clear and concise and give them a way to request a copy of the data you hold on them or have it deleted if they wish.
You will only be allowed to send these messages to people who have opted-in to receive your messages.
The signup process must inform subscribers about the brand that’s collecting the consent and provide information about the purposes of collecting personal data.
If you already have a database of email addresses you target we would recommend sending a campaign allowing users to opt-out before 25th May 2018.
FIND OUT MORE ABOUT GDPR HERE: www.eugdpr.org
If you have any questions about how it will effect your business we would love to help – feel free to give us a call.