No doubt you’ve recently received SOME sort of email talking about GDPR or, General Data Protection Regulation. Everyone from Google to Apple to Hootsuite is sending out emails regarding GDPR and for the most part, it’s not exactly an easy thing to understand.
So we thought we’d help out.
Here’s what you need to know about GDPR, GDPR compliance and who’s affected by GDPR.
What is GDPR?
The General Data Protection Regulation or, GDPR is legislation that was approved in April 2016 by European authorities who have given business two years to comply before it is enforced this upcoming May 25th, 2018.
Previously, countries in the EU were using the Data Protection Directive which is now being replaced by GDPR in order to harmonize rules across 28 EU nations. The goal of GDPR is to give consumers and customers control of their personal data that’s collected by these companies.
Who’s Affected By GDPR?
This will not just affect companies located in the EU. This law will apply to anyone selling goods and services within the EU, regardless of physical location.
This is why it’s important to know about GDPR and will be important to consult with your lawyer or business advisor moving forward.
Major Policies of GDPR
GDPR’s major focus has to do with the conditions of consent. These rules are being strengthened for people living with the EU to not only protect their data but take control of it. Moving forward, companies will not be able to use vague or confusing statements to convince people for their data. There will also be no bundling of consent with other things.
If you have an all-encompassing consent form, that won’t likely fly under the new rules. Essentially, you’ll have to have to able to apply consent individually.
Consent must also be easy to withdraw.
When it comes to children under 16, consent comes down to the person holding “parental responsibility”. Those holding responsibility must opt-in to data collection on behalf of the young ones.
How to Comply With GDPR
When it comes down to it, consumers in the EU will have more control. Consumers will be able to access their data being stored by companies just to find out what purpose it’s being used for. They will also have the right to be completely forgotten from the system.
If you’re not in the EU or, not targeting consumers in the EU, you most likely won’t have anything to worry about. But of course, consult a lawyer or business advisor.
If you’re in the EU or potentially targeting consumers in the EU, consult your lawyer or business advisor to ensure you’re complying with GDPR rules and regulations.
Better safe than sorry.