GDPR is designed to strengthen and unify data protection for all individuals within the EU. It also addresses the export of personal data outside the EU. The GDPR aims primarily to give control back to citizens and residents over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU.
It affects all businesses, yours and mine. It’s not just for big companies either. Even if you collect the most basic information from your website through a form, conduct any kind of digital marketing, send direct mail or make sales phone calls, you are included.
What is GDPR?
GDPR stands for General Data Protection Regulation which is a law devised by the European Union (EU). All member states of the EU must be follow and comply with GDPR, even the UK whose membership will end in 2019.
Every EU business (including Sole Traders) must be fully GDPR Compliant.
6 Steps to Compliance…
- Conduct a personal data audit of your website
- Modify your website
- Make your website secure with an SSL Certificate
- Understand data breach reporting requirements
- Keep consistent and detailed records
Frequently Asked Questions…
It affects all businesses, yours and mine. It’s not just for big companies either. Even if you collect the most basic information from your website through a form, conduct any kind of digital marketing, send direct mail or make sales phone calls, you will be included.
Don’t worry though, we are here to help!
The General Data Protection Regulation (GDPR) is a new EU regulation aimed at helping to strengthen data protection for EU citizens and residents both within the EU and the wider world. In short, it is saying to businesses and organisations: So what are the General Data Protection Regulations?
“If you want to offer your services or products to customers who are EU citizens or resident, then you need to ensure that you look after their personal data responsibly or face the penalty!”
The GDPR law applies to data collected about EU citizens and residents from anywhere in the world. Therefore, a website with any EU visitors or customers must comply with the GDPR, which means that virtually all websites and businesses must comply.
Anyone who collects and processes personal data (as defined by the GDPR as a Data Controller) will be required to comply with the new regulations to a certain degree. As well as organisations who run websites or apps, this also includes any organisations who use internal databases, CRM systems or even simple email.
The GDPR is already law and must be complied with.
The UK government has confirmed that the UK’s decision to leave the EU will not affect the GDPR guidelines.
Only applies to clients in the UK
The aim of the GDPR is to give citizens of the EU control over their personal data and change the approach of every organisation towards data privacy.
The penalties for non-compliance can be severe. “Under GDPR, organisations in breach of GDPR can be fined up to 4% of annual global turnover or €20 Million (whichever is greater). This is the maximum fine that can be imposed for the most serious infringements”.
The GDPR provides much stronger rules than the existing Data Protection Act laws and significantly strengthens the requirement to gain consent for any form of Digital Marketing
There are several. But don’t worry, they are easy to implement if you plan ahead and act now.
We will provid you with a guide to your responsibilities, what you need to do, and when.
We are here to help you!