But don't panic, it's not as scary as it sounds.
We've had questions from a few clients about GDPR and what they should be doing to make their websites GDPR compliant so we thought this might be of help.
GDPR is short for General Data Protection Regulation which was approved by the European Parliament in 2016 and will come into force on 25 May 2018, so it's coming up fast.
While this is European legislation, it affects any organisations or individuals who collect data on European citizens.
There's a lot of detail in the legislation, but the main points to consider are
Fines can be hefty and a plea of ignorance just isn't going to cut it. So please take the time to look into this ...
Even if all you have is a "brochure-ware" site with a simple contact form, at the very least you should provide an updated privacy and cookies policy.
Have a think about the following:
In the event that a customer or user requests to see the data that you hold on them, or requests that you delete the data you hold on them, then you must have the processes in place to handle these types of requests within the timescales laid out in the new GDPR regulations.
The new legislation may also have an impact on your wider organisation or business, so bear that it mind as well.
A good place to start is with the ICO in the UK.
They provide a really useful guide to the new GDPR legislation which you should take a look at. They provide links to a 12 step plan and a GDPR checklist which is a great place to start.
If you don't have the time or resources to re-write your existing privacy policy to cover GDPR, have a look an online resources. SEQ Legal have some GDPR specific templates that are worth looking at.
The above will get you started, but you should also carry out an audit for your site and for your wider organisation as suggested by the ICO 12 Steps plan.
You owe it to your customers/users and your organisation to keep their data safe.
I hope this helps answer some of the questions that have been raised. For most, this shouldn't be major issue, but I recommend acting now rather that leaving it to the last minute.
If you have any questions, or need any help, feel free to raise a support ticket via our help desk.