You have probably heard the term GDPR by now. You probably are either reviewing online articles referencing it (thank you for reading BTW), scratching your head at it, dismissing its relevance to your situation or having brief water-cooler conversations with your co-workers about it.
But are you and your company truly prepared for it?
GDPR is an acronym for General Data Protection Regulation. It is a European Union (EU) regulation that will generate the biggest changes in data protection in the EU since 1995. GDPR was created to bring as much uniformity into data protection as possible. This new regulation is better suited to the challenges our current digital world poses.
The GDPR was adopted in mid-2016 but included a two-year “transition period” before enforcement begins on May 25, 2018—an indication that the EU regulators recognized how difficult it would be for many businesses to institute the measures for compliance. Nevertheless, few firms have taken advantage of the full grace period. One global survey at the beginning of 2017 found more than half (54%) of the responding organizations had not advanced their GDPR readiness.
In general, GDPR requirements relate to eight fundamental rights people now have over their personal information:
For American companies, it is tempting to dismiss and move on, but it also applies to companies outside the EU region that monitor the behavior of people within the EU and to non-EU companies that offer goods or services within the EU. So, having a CMS that can distinguish between visitors based within and outside the EU is of great benefit. In other words, based on geolocation, the CMS would not use analytics from EU-based visitors without obtaining their consent, stating they agree for the site to track their web behavior.
This ultimately means businesses should view themselves as data controllers that need to review their relationships and activities with platforms and agencies that are typically serving the role as data processors. There needs to be more attention paid to data capturing processes and opt status. If you partner with an agency that has always been on top of customer opt status and the right way to engage customers, then you are in a better position than others.
DISCLAIMER: All data and information provided in this blog post are for informational purposes only. thunder::tech makes no representations as to the accuracy, completeness, currency, suitability or validity of any information contained herein. We recommend consulting with a legal professional for any legal advice pertaining to GDPR compliance.
Reach out to learn more about how thunder::tech can help your business not only succeed, but accelerate.