GDPR General Data Protection Regulations
**TEST YOUR GDPR KNOWLEDGE WITH OUR QUICK QUIZ BELOW**
GDPR stands for General Data Protection Regulation and is set to replace the existing Data Protection Directive in May 2018. This framework was first put forth by the European Commission in 2012 and was finally agreed upon by the European Parliament and Council. GDPR contains several new protections for data and is due to be enforced in the spring of 2018.
The main aim of the GDPR is:
“to provide individuals with better control over their personal data, in a way that will help businesses to get the most out of the digital single market; through providing them with various business opportunities.”
As the digital economy grows, it is important for laws to be clear with an individual’s rights to be safeguarded and for there to be consistent international data protection regulations. Particularly with the increase in businesses/services operating across borders. It is believed that the introduction of this framework will ultimately contribute to an increase in consumer trust.
The GDPR regulation will change the way you manage, protect, and administer the data under your control. One of the main effects will be how your organisation communicates with your members or customers via email, SMS, telephone, and direct mail.
You will have to provide clear opt in and opt out option for consumers.
Additionally, the recording of consent and improved privacy policies will be a requirement for when personal data is collected.
The GDPR widens the personal data net and clearly defines personal data into four categories which are as follows:
1 – Personal data and unique identifiers – includes online identifiers and location data
2 – Pseudonymous data – that has been through technological measure i.e. hashing or encrypting
3 – Genetic data – to do with an individual’s gene sequence)
4 – Biometric data – such as facial recognition, fingerprints, etc.
Crumbling Cookies – online and unique identifiers such as cookies used to gather data and further target potential consumers Non-EU advertising, analytics and social media platforms will most likely find themselves in a position where they will be legally required to treat these identifiers (cookies) as personal data under the protection of European law and will need to update their policies, procedures and systems as required.
Increased Costs – to carry out processes to organise your data sets and reduce any potential data breach will require system adaptation and human resource. Is your finance director aware of this and have they allocated your department a budget?
Organisational Compliance – with data subject access, correction, deletion, and transferability being under close scrutiny.
You could face a fine of up to 4% of your organisation’s annual turnover.
Reputational Damage – portraying a negative image which will ultimately damage your brand
Further Fines – If a company receives high amounts of complaints they could be liable to pay additional fines from the Information Commissioner’s Office (ICO)
To ensure that sensitive data is protected, your organisation will need to identify the risks that exist and then put in place procedures and policies to help mitigate these risks and prevent any problems that may occur.
Test your GDPR knowledge – 6 quick questions – Get your result instantly
If you get 6/6 you may well be an expert – if not – come back, download the GDPR Fact Sheet and read on and get up to speed! – Then take it again.
Romax Marketing & Distribution provides a wide range of services in Direct Marketing for B2B and B2C, including Direct Mail, Data Management, Printing, Discount Postage, Membership Communication Services, and Consultancy.
Contact us, either by phone +44 (0) 20 8293 8550, email email@example.com, or filling the form: