You may have visited a website where a message immediately pops up with information on how that website handles cookies or your personal data collected during your visit. Along with that information, you may have been prompted to accept or deny, read their privacy policy and data collection information, just like the example below.
This is a sample of a typical GDPR notice. GDPR requires that you must clearly disclose any data collection, declare the lawful basis and purpose for data processing, and state how long data is being retained and if it is being shared with any third parties or outside of the European Union areas.
Just what exactly is this GDPR?
While it may seem like just another burden for you to attend to, it is otherwise.
GDPR stands for General Data Protection Regulation. Yes, it’s a regulation to protect or give people control over the use of their personal data. Although this is a European Union regulation, it also addresses the transfer of personal data outside the European Union areas.
How do I know if I am required to comply?
It impacts every business operating in or with customers in the European Union. That’s nearly every website in the world!
Regardless of the location of your business or your citizenship, if your website is processing personal information of people in the EU or EEA (European Economic Area), this regulation applies. The GDPR was adopted in 2016 and enforced on May 25th 2018.
This applies to websites that have (but not limited to):
- ads
- sign up forms for newsletter, events, contests
- contact forms with email address field
- user account creation
- any website or WordPress website with CMS
- database with order information
- checkout
Implementing a GDPR on your website is highly recommended, if your business sells physical or digital goods, serves not only your local US or non-EU customer base. For help and more information, just reach out via our live chat, phone or email.