- Only use the medium you are authorised to use: You are obligated to only contact an individual using the channel they have opted in to.
- Unsubscribes are not to be contacted: If an individual has actively asked to unsubscribe, it is important to refrain from contacting them again. You should never contact them to ask if they wish to be subscribed back to your content.
- Alert everyone: Make sure that everyone in your business, especially those who have access to your data are aware of the GDPR. Otherwise you will be held directly responsible if your employees are still emailing contacts or breaching the law.
- Re-consent your active users: Using the medium that the individual has consented to, ask them if they would like to remain on your database. You can, however, use this as an opportunity to ask if they would like to be kept up to date via other forms of communication. (Please note, if you do not have evidence that you can contact an individual, be careful about asking them to opt in as this is still seen as a method of processing data, which is illegal if the person has not authorised it).
- Data Protection Officers (DPOs): You must appoint a DPO if you:
- are a public authority
- carry out large scale systematic monitoring of individuals (e.g. processing personal data for behavioural advertising)
- carry out large scale processing of special categories (e.g. sensitive personal data, such as ethnic origins, religious beliefs etc.)
- If you are not required to appoint a DPO you should keep records of all your decision making processes in regards to the GDPR.
- Safety, encryption and risk: With data protection soon to be stricter, so should your internal processes. You should take extra precaution to ensure that data is safeguarded and make sure regular tests take place. We also recommend you have a breach response plan in place.
- Establish retention periods: Over the course of time, some users will become inactive or unresponsive. Establish retention periods so you can keep your data accurate and your database responsive.
Preparing for the GDPR?
Thursday 9 November 2017
Unless you have had your head buried in the sand, it is impossible for you not to have heard about the General Data Protection Regulation (GDPR), but have you started preparing for the GDPR? The GDPR is coming and will take effect from 25 May 2018. The date is getting closer, which means it is time to stop talking about the changes and, actually, start taking action to make your business compliant. What is the GDPR? The GDPR will supersede the outdated Data Protection Act (DPA) and will bring in tighter rules concerning the processing of data. People will have more say over what businesses can do with their details, which will affect how you use customer and prospect information. The GDPR will also address electronic data storage and will introduce tough fines for non-compliance and breaches. The GDPR will apply to all personal and sensitive data as a way to safeguard and give more choice to individuals. Going forward, you will be required to provide opt-in options to all customers and prospects and make it clear during this process what their information will be used for. You must also have ‘evidence’ that you can contact an individual before doing so. The government has also introduced several new principles including the “right to be forgotten” and the “right to object” clause, which will allow individuals to object to their details being used, shared, transferred or held. Upon request, you must remove an individual from all communications immediately. Preparing for the GDPR Failure to comply can result in businesses being fined up to €20million or four percent of the business’ worldwide turnover. In order to avoid this becoming a possibility, there are several processes you must become acquainted with. To prepare for the changes:
JOIN THE RAFFINGERS TRIBE
Tired of searching endlessly for blogs, books and emails that you hope will help you solve your business problems? Don’t worry, we’ve got your entire business journey covered. From how to secure funding and manage cashflow, right through to succession planning and everything in between. Sound good? Join the Raffingers Tribe to gain access to an ever-growing library including:
- Exclusive tribe events
- Live webinars with incredible guest speakers
- Free downloads, workbooks and cheat-sheets
- A variety of articles covering all things business
Already registered? Click here to log in
Thank you, you have been registered.