Is Your Website GDPR Compliant? Skylink Technology, USA

Is Your Website GDPR Compliant?

What is GDPR?

GDPR (General Data Protection Regulation) is a new legislation which comes into force on the 25th of May 2018.

It’s a legislation which focusses on the way in which private data belonging to EU citizens is collected, stored and distributed. Everyone is required to take action before the given date—this applies to all companies across the world who appeal or work with EU citizens. It doesn’t matter where you are located in the world, if you’re dealing with EU citizens, you need to comply to GDPR.

The motive behind the EU regulation is to protect consumers and customers against the rising data breaches, which is costing the UK economy billions of pounds a year. Several large firms have fallen victim to breaches including eBay, Linkedin, Bupa and Zomato.

The two key factors of the GDPR regulation are simple: keep customer data secure and make marketing communications as clear as possible. Failing to uphold these standards many result in a hefty fine which is has been lifted from 500,000 euros, to 20 million euros or 4% of annual turnover.

Below we explain how to incorporate these themes and make your website GDPR compliant.

1. PRIVACY POLICY

Once you have analysed the data that you are gathering (and, if there is a lot of it, you would need to assign a Data Protection Officer (DPO) who is responsible for monitoring this data), you then need to set this out in a revised privacy policy on your website.

Your privacy policy needs to be written very clearly and cover details about how you are capturing data, where you are storing it, how long you intend to keep it for, how people can view what information you have stored and finally, how they might go about having their data removed from your systems (The right to forget).

2. WEBSITE FORMS

Forms on your website must no longer include pre-ticked boxes. This is considered implied consent and not freely given.

Users should be able to provide separate consent for different types of processing. For example, an option to be contacted by post, email, or telephone as three separate tick boxes.

Offering them something like a whitepaper if they sign up to something is a great way of getting more user signup’s, but you still need to provide an opt in tick box, otherwise consent has still not been given freely.

3. EASY TO WITHDRAW PERMISSION OR OPT-OUT

In terms of your web user experience, this means providing a way of unsubscribing on your email marketing and providing a link via your website also – this may be best placed in your website’s privacy policy.

4. COOKIES

If you are using third-party plugins such as Google Analytics to capture autonomous data, then you need to make your users aware of this via your privacy policy.

5. IP TRACKING

If your website has a blog element to it where users can leave comments or sign up to a news feed, the chances are their IP address is being stored in your websites database and therefore, you need to let people know about this.

6. SOCIAL MEDIA ADVERTISING

If your website has a blog element to it where users can leave comments or sign up to a news feed, the chances are their IP address is being stored in your websites database and therefore, you need to let people know about this.

7. ONLINE PAYMENTS

If you are likely to be using a payment gateway for financial transactions – PayPal, Stripe, SagePay etc then your own website may be collecting personal data before passing these details onto the payment gateway.

If this is the case, you will most certainly require an SSL certificate to make sure this information is properly encrypted.

If your website is then storing these personal details after the information has been passed along then you will need to modify your privacy policy and web processes to remove any personal information after a reasonable period, for example, 90 days.



Leave a Reply

We use cookies to ensure that we can give you the best experience on our website. If you Want to use this website you are allowing to the use of these cookies. Check our privacy policy for more details.
Contact Us Today!

We are glad that you preferred to contact us. Please fill our short form and one of our friendly team members will contact you back.

X
Quick Quote