Are you ready for the new EU General Data Protection Regulations (GDPR) coming into effect on 25th May, 2018?
Even if you are not in the EU, any website that serves content to EU citizens (including those in the UK, despite Brexit) will have to comply with the new regulations.
Non-EU businesses processing the data of EU citizens will also have to appoint a representative in the EU.
- Organizations in breach of GDPR can be fined up to 4% of annual global turnover or €20 Million (whichever is greater).
- All business websites need to have an SSL certificate (supplied free of charge at Techboy with every design & hosting package).
- Cookie Consent is now more complicated. Simply stating that your website uses cookies is no longer an option. A user must consent to the use of cookies, and you need to keep a record of this consent. Furthermore, you need to give a user an easy way to accept cookies in the future, or revoke permission if they have already consented. You need to have a record of what the user consented to, exactly what information of theirs you have stored, and a means for them to request that information, and deletion of that information.
- Users need to provide explicit consent to be included on any of your mailing lists – any mailing lists currently used by your organisation need to have records of consent for each user prior to 25th of May, 2018.
- You need to inform your users of their rights, and how to complain if they feel these rights have been infringed upon.
Just having at look at the points outlined above is already cause for concern to anyone serving content to EU citizens.
Be sure that you are ahead of the curve when the time comes.
Source: GDPR Key Changes.
