If you just thought, “My company is not headquartered in the EU, this doesn’t apply to us,” you may be incorrect. The regulation applies to ALL companies collecting, processing, or storing data of individuals who live in the EU, regardless of the location of the company. What does that mean? If you are getting traffic, or business from the EU, you do have to care and comply.
If you do have an audience from the EU, you need to determine if your site is ready for the 5/25 deadline. There are a few key elements that need to be taken into consideration and accounted for on your online properties.
First: Does your site display the necessary GDPR cookie disclaimer? The regulation requires that users must be:
There is a variety of ways this can be displayed to users when they visit your site. Our client, Binary Tree, selected this treatment to display the message, gain consent and provide access to the relevant privacy policies.
Third: Are your forms updated to include more specific language about how collected information will be used after the form is submitted. You should be sure you update the disclaimer language on any lead generation forms, contact forms, email/newsletter sign ups and any form that collects the user’s personal information. Consent here must also be active, and not default opted-in to be compliant.
While the 25th is near, there is still time to comply with the GDPR regulations. If you do not have the internal bandwidth to implement the required changes fast enough, our team is here to help you configure and deploy the necessary changes to your website.
This article is only a summary of GDPR information. It is not intended as legal advice, nor does it replace the need to consult an attorney to understand how this law applies to your specific circumstances. Reading this does not replace legal advice, nor does it constitute legal recommendations.