What you need to do to make sure your website is GDPR compliant
Lately, you've probably noticed that you're getting a lot of emails about updated privacy policies. That's because the EU passed a law called General Data Protection Regulation (GDPR) that goes into effect on May 25th.
Your website is affected by this new law if it:
- offers products or services to citizens of the EU
- collects personal information from citizens of the EU
Even if you don't have EU connections, we still recommend a Privacy Statement (all good websites should have one—see #1 below). If "yes," you are dealing with the EU, then you need to make sure you're GDPR compliant. So what do you need to do?
A clear and accessible privacy policy
Your privacy policy should use everyday language to describe what you plan to do with the data you collect. You need to tell your customers how they can access the personal information you've collected from them and how they can ask for that data to be erased. Check out our privacy policy for an example.
Active consent
When you collect personal information in an online form, you need to get consent for the ways that you plan to use that information. Consent can't be required and must be active, so silence, inactivity, and pre-checked boxes don't count. Consent also has to be granular, so you can't bundle consent in a single, vague statement.
Conscientious data management
You need to periodically and automatically delete any records of personal data that your business doesn't use. In case of an audit, your company should appoint a Data Protection Officer who understands GDPR guidelines. You'll also need lists of all the kinds of personal information you collect, who you share that information with, and what you do with it.
Take a look at this helpful checklist for more details: gdprchecklist.io
If you have questions or need help making sure that you're GDPR compliant, we'd be happy to help!
Further Reading: GDPR: What you need to know
By Category
Branding
- When a logo is wrong
- Just trust me
- What is branding
- The New Logo
- Empower Your People
- Publicity and Your Brand
- What is debranding
- Ten things branding will do
- The peril of initials for a company name
Design
- Type Tips
- An Introduction to Design
- Brought to you by the letter g
- How simple is simple
- Design is art with a purpose
- Design hurts
- Freedom in limitations
Freebies
Marketing
- The difficult client
- Why you need content to build trust
- Start your strategy with a question
- The CRM Circle
- The Marketing Cycle Simplified
Presentation
Social Media
- Can social media attract new customers
- Reaching Millennials with Instagram
- Free Ways to Build Your Donor Base
- Twitter is a business tool
Web
- GDPR
- Wordpress Theme Frameworks
- What the Internet is doing to our Brains
- Web Basics
- Advice for NonProfits
- Write Welcoming Copy
- How to Write Welcoming Web Copy
- Is Web Design Dead
- Web Design Our Process
- Is content dead
- How your website can get noticed
- 4 Tips for Writing Great Web Content
- Domain Name Registrars
- How the Web works
- Domains and Web hosts