In an effort to address any concerns you may have about the GDPR legislation, and how it effects you as a website owner, here are the Cliff notes:
- If your website collects any data, such as through a contact form, survey, newsletter sign-up, ecommerce transaction, event registration and some website analytics, the new regulation may apply to you.
- The legislation is intended to protect citizens of the European Union, but if you interact with any European site visitors, this regulation applies to you.
- Your website visitors who are EU citizens must provide you with consent to collect their information and they have the right to access their information, if desired.
- If a user who is an EU citizen, wants to remove their information, you must thoroughly comply.
Based on the above, here are the updates you may need to make to your website:
- State what data you collect and why.
- State what you do with the data.
- State where the data is stored.
- State your process for deleting content, when requested.
- For subscriptions, use double opt-in steps.
- For email blasts, include a footer that defines why they are included in the mailing.
- For ecommerce transactions, allow customers to opt-in to a mailing list rather than auto-enroll their email as part of the transaction.
- Ensure your website plug-ins are GDPR-compliant.
If you would like assistance with ensuring your website is GDPR-compliant, contact us. We will review your website and provide you with an estimate.
Please note that Project 18, Inc. is not providing legal advice on this subject and be aware that there are penalties for non-compliance.