The General Data Protection Regulation (GDPR) comes into force on 25th May 2018 and aims to provide consistency and standardisation for EU Member States on the processing and use of personal data.
Any organisation that holds, collects or uses customer data for their marketing or business communications needs to be GDPR compliant. Even non EU-based sites and businesses are affected.
GDPR is the most important change for data privacy regulation in 20 years.
GDPR stands for General Data Protection Regulation and it is a new data protection law in the EU, which comes into force on the 25th of May 2018.
The aim of the GDPR is to give citizens of the EU control over their personal data, and change the approach of organisations across the world towards data privacy.
Please note: This blog entry is not a legal advice. We can point you in the right direction, but are not lawyers.
The GDPR provides much stronger rules than existing laws and is much more restrictive than the “EU cookie law.”
The GDPR regulation is the right step in ensuring transparency in handling of data.
Usually user data is collected when sites have these tools in place:
- user registrations,
- comments,
- contact form entries,
- analytics and traffic log solutions,
- any other logging tools and plugins,
- security tools and plugins
In case your website uses any of the tools mentioned above, you need to make your customers and/or user click a checkbox to make sure they know about your privacy policy.
For instance, a checkbox that’s selected by default would count as a violation. Under the GDPR, everything that’s part of your online presence as a business will need to explicitly collect consent and have a privacy policy in place.
Find more information about all GDPR regulation at EUGDPR.org or ICO.
”We make your website GDPR ready!
We will install and integrate the necessary plugins that conform to the new GDPR rules ready for the 25th May.
Give us a call or send an email to gdpr@blayneypartnership.co.uk
In order to be compliant you need:
Privacy Policy & Cookie Policy
You will need to update your Privacy Policy/terms and conditions on your website to reference to the GDPR terminology. This is a tailored document, depending on your business and the services you offer. Users of a website must have a clear understanding of how their personal data is processed. Therefore the privacy policy must be concise, transparent and easily accessible to all users. This means that it should be written in clear and plain language for users to understand.
If your site uses Cookies, you need to have a Cookie Policy. The GDPR covers any form of personal data, which is why it involves the use of cookies. Cookies store unique data about a user, meaning that personal data is stored. This means that cookie consent will now need to comply with the GDPR. As implied consent is no longer enough when collecting data, users will have to make a positive action to signal that they consent to the data collection from cookies. This means that the current pop-up used on many websites stating ‘By using this site, you accept cookies’ will no longer be enough.
Up-to-date Website
Your website may need an update to implement these changes. If you do have a Service-level agreement (SLA) with Blayney Partnership, updating your website is included. If not, just get in contact with us and we will get a quote ready for you.