From May 2018 there will be a significant change in how small businesses handle customer data. GDPR will affect all businesses, large or small, in some way and its best to be thinking now about any changes you will need to make to your working practices.
- Despite Brexit, if you work with clients in the EU, you need to meet requirements if you are working with clients in the EU.
- GDPR relates to the securement of personal information – such as email addresses, IP addresses, text messages and structured paper records.
- Part of the changes relate to how you collect personal information – you cannot assume consent and need to demonstrate that contacts have consciously opted-in.
- You won’t be able to export one list you hold to another e.g. using linked in contact lists to add to your newsletter list. Specific permission is key.
- Historical data will also be affected – and this is the area which I think will be most problematic – current subscribers need to opt in again or you need to be able to prove you have their permission to mail.
- Personal information must be kept securely – in the case of mobile devices such as laptops, tablets, phones, this may mean considering encryption to give extra protection in the case of any theft of the devices.
- Data storage needs to be secure and GDPR compliant – whether it is based in the EU or not [such as cloud storage].
You may need to speak to us to ensure that your website complies with the data collection with the minimum of fuss – remember to book us early if you need this tech support.
Questions? Just get in touch!