The GDPR and YOU!

The GDpr and YOU!.png

Does your business market to EU residents or collects any information from an EU resident?

If so, let's talk about the GDPR. When I first heard of GDPR, I didn't pay too close of attention, as I didn't think it impacted me as my client base is U.S. However, after learning more about it, I am in the process of updating my website policy and T.O.S. 

Some of you may also be impacted and we wanted to make sure you are aware of this new policy being implemented in the EU.  

What is the GDPR?

The GDPR (General Data Protection Regulation) is a new privacy law approved by the EU Parliament in April 2016 and will go into effect on May 25, 2018.

For those of us who have a US-based market, it is good to be aware of the new updates, as I could easily see some of the updates in future US data protection practices.

Here are the highlights from what we've learned:

  1. You can no longer require a user to enter their email address to receive a free download or "lead magnet", and you can no longer automatically add subscribers to an email list when they request the free download or lead magnet.
  2. You must have a clear presentation of what data you will collect from users and how that data will be used, somewhere on your website (i.e. a Privacy Policy page that is easily accessible and preferably linked in your signup forms or landing pages).
  3. You must update your current subscriber lists to be compliant with these changes by the deadline.

What should you do? 

If you have customers/email subscribers in the EU, make sure your website policies are updated and in compliance with this new privacy law. 

An additional resource:

Amy Porterfield did a great job explaining the GDPR in a recent podcast.