Many of our clients do business with customers outside of the United States. The European Union (EU) has data privacy regulations that have been enacted to protect the personal data of individuals. Here’s a brief explanation of GPDR and a few suggestions for GPDR compliance.
The General Data Protection Regulation (GDPR) is a regulation in the EU that came into effect on May 25, 2018. It sets rules for how businesses collect, use, store, and protect personal data of individuals in the EU. Under GDPR, individuals have the right to access their data, request the deletion of their data, and know how their data is being used. Businesses must also obtain explicit consent from individuals before collecting their data, and must report any data breaches to authorities within 72 hours.
Simply put, the GPDR aims to protect the privacy of individuals and give them greater control over their personal data. Businesses that collect personal data of individuals should be aware of these regulations and ensure they are compliant with the applicable rules and requirements.
Here are a few ways to help make your website compliant with GPDR:
- Consent – Adding a button to your site advising visitors of your policy and enabling them to opt-in or opt-out of your cookie policies.
- Email Marketing – Make sure that your email marketing platform includes GPDR compliance features and that your contact database is current and users have opted-in to receive your mail.