Europe’s General Data Protection Regulation
law (GDPR) comes into force on 25 May, 2018. So whether you like it or not, if you have European subscribers to your mailing lists, or if you do business with Europe, you have to prepare for it. Even in Australia
Yes we know it’s pain in the neck, so we are making it easy for you. Here’s our 4 -step plan for what you need to do:
1. Implement appropriate technical and organisational measures for data protection.
This means you have to have adequate security layers around any systems used for collecting personal details, including email addresses. Head to your site host and see what they have done to set you up for GDPR. GoDaddy, for instance, has done most of the work for you
, particularly if you have a Wordpress site. (And there’s always Cookiebot
if you’re on a Wordpress site but not with a sitehost that does these kinds of things for you.)
If you use a cloud based (third party) system, you have to check it’s adequately secure. But that usually just means checking the sites themselves. Mailchimp
all have GDPR-ready processes and resources.
3. Ensure your messaging includes instructions on how to manage personal information
. Probably best to prepare your own form (like this one
) and just create a link to it in the footer of your messaging. There’s even a flow chart you can use
on how to respond to SARs.
You can read more in the GDPR portal
. But essentially, you just need to do it. It won’t take long, but with only three weeks to get compliant, it’s probably worth getting on to it if you haven’t already.