General Data Protection Regulation (GDPR) is going to be one of the biggest shake-ups in data protection and privacy laws. The European Union are making huge changes and it is up to businesses to learn how to make the changes to be GDPR ready.
One of the key reasons as to why GDPR will come into force is due to the exponential rate that data is being collected. That’s why changes need to be put in place to regulate how organisations collecting personal data and of course how they use it. With data-driven marketing increasingly at the forefront of business, it is inevitable that marketers are going to have to prepare themselves considerably before the changes come into place.
Although GDPR won’t be applied until mid-2018, which may seem like a long time, but in reality, it is not that much time. So, how should marketers prepare? Here are some of the key points for marketers to take into consideration and how to prepare.
One of the main aims is to put individuals back in control of their data. In recent years, individuals have taken data protection much more seriously and are more aware that companies are using their data and selling it on. Therefore, transparency is crucial to the future of business and marketing. Marketers must be aware that they need to make it clear to customers what will happen to their data and where it will be shared. You should ensure you find out and document what personal data you hold, where it has come from and who you share it with.
Furthermore, you need to ensure that you when you are processing data it is adhering to GDPR policy. Look at how the different ways that currently carrying out data processing and make sure you identify and document your legal basis for carrying it out.
Right to be forgotten
In addition, if customers are not happy with you using their data, they have a right to be forgotten and this must be adhered to. Failure to do so could lead to serious consequences and lead to businesses ending up in court.
To be GDPR ready in advance, you may want to review and adjust the way you obtain and record consent. It will also mean that you must implement the deletion of personal data and ensure you have a procedure in place to include how you would delete personal data.
Data access requests known as subject access requests (SARs) must be responded to in a shorter timeframe. A new process must be put in place to ensure requests are completed in time and how data will be provided electronically and in a commonly used format.
Prepare your Staff
To implement these changes will be a team effort with all key people in your organisation aware of the changes and new procedures. So, ensure everyone is on board with the importance of making the new changes.
Moving forward marketers must take huge strides in their practice, because if not they may face serious consequences. These are just a few of the ways marketers can prepare for the different aspects of GDPR. It’s vital for marketers to learning the full changes to GDPR or you could face huge implications. To find out more about GDPR find information about our conference www.gdprsummit.london.