What is GDPR in a nutshell?
GDPR stands for General Data Protection Regulation and is a European regulation meant to give consumers more control over their personal data. It becomes enforceable by May 25th, 2018 so it’s important you educate yourself soon and take the necessary measures.
All organisations ‘handling’ personal data of citizens or residents of the European Union (EU) have to comply with GDPR. Here are some examples:
- An e-mail address field on a contact form or checkout page.
- People can log in to your website.
Even if it’s just in the back-end so all sites with a Management System like Cloudlets, SquareSpace and Wix or self-managed servers such as Joomla, WordPress and Magento have to comply.
- Database with order information.
- Event sign-ups.
- Email based forms
What should be disclosed?
In essence, GDPR assists you and your users to ensure their data is safe-guarded and they have safe access to the data collected.
GDPR requires website and web-shop owners to inform visitors:
- which personal data is being collected
- what the data is being used for
- who is handling the data
- how the data was obtained
- how and where the data is stored
We assist you and your business in being compliant with the General Data Protection Regulation (GDPR) but recommend contacting a law firm for rock solid legal advice where required.