Every business owner around the world has to address the GDPR ( General Data Protection Regulation ) which becomes active on 25th May 2018. If your business is based in the EU or provides services to EU citizens ( even if your business is based outside of the EU ), then you have steps to take with your business to ensure every piece of customer data you hold and your processes in dealing with that data are compliant with GDPR.
Weblake is supporting its customers primarily with their websites and its respective Privacy Policy. We are creating their specific Privacy Policy via the ‘iubenda’ service which is backed by a legal team that keep the policy wording up to date automatically. In addition to creating and implementing these Privacy Policies for our customers, we are also ensuring that our customers have the correct Cookie Consent directive in place. Indirectly, the support is there for our customers to help them understand the non-website related steps that are required to ensure they are GDPR compliant. This is a minefield and specific to each business. Each businesses Privacy Policy is also specific to them and their data activities. No template is suitable now. No one-size fits all. Those days of “let’s copy that Privacy Policy and paste it into our website” are over. Generic is out! Specific and transparent is where it’s at.
The ICO website contains a wide range of extensive guides and documentation that distills this new Regulation into achievable and understandable actions that are required by every business that has to adhere to this new Regulation. To that end, I share a great 12 step guide to GDPR and links to relevant and useful resources.
Download the 12 steps to take now GDPR guide
GDPR resources
Guide to the General Data Protection Regulation (GDPR)
GDPR documentation
GDPR key definitions
Data protection self-assessment
Consent ( Lawful basis for processing )
ICO blog: Myths! Sorting the fact from fiction
It will be interesting to see how the landscape will look post 25th May 2018 and GDPR. I can only imagine the immense work and investment that has been required by corporations to adhere to this programme. Will they all do it correctly? Let’s see.
Moreover, let’s see how quickly we see claims being placed against businesses out there for non-GDPR compliance. I can imagine there are consumers out there as I write, sat in their ivory towers, poised, ready to lunge at the chance to claim what is reported to be potentially millions of pounds in compensation.
I am supporting my customers and helping them protect themselves from the acts of consumers trying to make a quick buck.
We can only hold our breath at this stage.
