In just a couple of weeks, data protection rules across Europe will undergo their biggest changes since 1995. Following negotiations in April 2016, European officials agreed upon the new General Data Protection Regulation.
This new law aims to bring the outdated personal data rules up to date with our increasingly digital era. After all, the amount of data we are now producing wasn’t predicted when the current data protection laws were thought out two decades ago.
On May 25th 2018, GDPR will be enforced by data protection regulators across Europe. It will inevitably change the way business and organisations handle their customers’ information, but how exactly?
The General Data Protection Regulation was designed to “harmonise” data privacy laws across Europe as well as giving greater protection and rights to internet users. The Information Commissioner’s Office will implement the new bill and enforce compliance in UK businesses – failing to comply could result in huge fines of up to £20 million, or 4% of a company’s annual global turnover.
Companies will be expected to protect both the personal and sensitive data of their customers. Personal data refers to complex information that can be used to identify a user, i.e. their name, address or IP address. Sensitive personal data encompasses factors such as religious and political views, sexual orientation and more.
As an organisation, you must clearly obtain the permission of people who you are collecting information from. These users must also be allowed easy access to all the data a company holds about them. Collecting data must be voluntary, where the users sign up to your newsletter because they want to, not because they have to.
In the event of a security breach, organisations have a duty to report it to a relevant supervisory authority within 72 hours, unless the breach is harmless and poses no risk to users. However, if it is concluded as a high risk, the company must also inform the individuals impacted by the threat.
Still unsure about GDPR and how it will affect your business? Why not speak to our content and design team at VerriBerri PR and Marketing in Essex!
As a digital marketing agency, we have nearly a decades-worth of experience building contact lists and creating email newsletters, so we can talk businesses through the new regulation. Get in touch with us on 01376 386850.