What you need to do to make sure your website is GDPR compliant
Lately, you've probably noticed that you're getting a lot of emails about updated privacy policies. That's because the EU passed a law called General Data Protection Regulation (GDPR) that goes into effect on May 25th.
Your website is affected by this new law if it:
- offers products or services to citizens of the EU
- collects personal information from citizens of the EU
Even if you don't have EU connections, we still recommend a Privacy Statement (all good websites should have one—see #1 below). If "yes," you are dealing with the EU, then you need to make sure you're GDPR compliant. So what do you need to do?
A clear and accessible privacy policy
Your privacy policy should use everyday language to describe what you plan to do with the data you collect. You need to tell your customers how they can access the personal information you've collected from them and how they can ask for that data to be erased. Check out our privacy policy for an example.
Active consent
When you collect personal information in an online form, you need to get consent for the ways that you plan to use that information. Consent can't be required and must be active, so silence, inactivity, and pre-checked boxes don't count. Consent also has to be granular, so you can't bundle consent in a single, vague statement.
Conscientious data management
You need to periodically and automatically delete any records of personal data that your business doesn't use. In case of an audit, your company should appoint a Data Protection Officer who understands GDPR guidelines. You'll also need lists of all the kinds of personal information you collect, who you share that information with, and what you do with it.
Take a look at this helpful checklist for more details: gdprchecklist.io
If you have questions or need help making sure that you're GDPR compliant, we'd be happy to help!
Further Reading: GDPR: What you need to know

By Category
Branding
- When a logo is wrong
- Just trust me
- What is branding
- The New Logo
- Empower Your People
- Publicity and Your Brand
- What is debranding
- Ten things branding will do
- The peril of initials for a company name
Design
- Type Tips
- An Introduction to Design
- Brought to you by the letter g
- How simple is simple
- Design is art with a purpose
- Design hurts
- Freedom in limitations
Freebies
Marketing
- The difficult client
- Why you need content to build trust
- Start your strategy with a question
- The CRM Circle
- The Marketing Cycle Simplified
Presentation
Social Media
- Can social media attract new customers
- Reaching Millennials with Instagram
- Free Ways to Build Your Donor Base
- Twitter is a business tool
Web
- GDPR
- Wordpress Theme Frameworks
- What the Internet is doing to our Brains
- Web Basics
- Advice for NonProfits
- Write Welcoming Copy
- How to Write Welcoming Web Copy
- Is Web Design Dead
- Web Design Our Process
- Is content dead
- How your website can get noticed
- 4 Tips for Writing Great Web Content
- Domain Name Registrars
- How the Web works
- Domains and Web hosts
By Month
October 2019
July 2019
March 2019
February 2019
November 2018
October 2018
May 2018
June 2017
May 2017
April 2017
- An Introduction to Design
- Empower Your People
- Publicity and Your Brand
- What the Internet is doing to our Brains
March 2017
- Web Basics
- Why you need content to build trust
- Free Ways to Build Your Donor Base
- Advice for NonProfits
January 2017
November 2016
July 2016
June 2016
March 2016
August 2015
May 2015
February 2015
January 2015
September 2014
May 2014
December 2013

Sign up for our emails
[don't worry, they're few, far between, and loaded with killer content]