Many of you have heard of the European Union based GDPR (General Data Protection Regulation) for EU businesses that comes into effect May 25th, 2018.
You may not know that it is not just for companies based in the EU! This is a regulation in EU law on data protection and privacy for all individuals within the European Union. It also addresses the export of personal data outside the EU.
If you have an opt-in or web form on your site, requesting personal information and your site is available on the web then you need to meet some basic guidelines too!
What those guidelines are will depend upon what kind of information you are collecting and what type of organization you are, but a few standarized guidelines should still be set up and can take just a few minutes!
- Have a Privacy Policy at the footer of your site, or just below your opt-in.
- Add compliance language to your forms.
- Do a quick audit of where and how your data is being stored so that you can respond accordingly if someone requests that information!
**As of right now, small businesses are not bound by the same rules as the GDPR as per GDPR’s Article 30, but now is the time to make sure you are still meeting some of the guidelines that the EU citizens are going to be expecting!
Want to review what you need to stay on top of this? Schedule a meeting with us here!
Resources:
