If you’re even a little connected online, you’ve probably heard about GDPR or at least seen its effects in the form of increased emails in your inbox.
These emails likely informed you that the sending organization is updating their privacy policies and/or asking you to indicate whether or not you would like to continue receiving emails from them.
This is in response to GDPR or the European General Data Protection Regulation, which is a series of standards that govern how personal data on members of the European Union is collected, stored and used. The implications for organizations outside the European Union are that the regulations do apply, as long as those organizations have a business or website that engages with European residents. The requirements went into effect on May 25, 2018, which explains the recent flurry of activity in your inbox.
The purpose of GDPR is to offer protection to European Union members regarding how their personal data is used. It offers increased transparency so that individuals are aware of how the data is used, and it offers certain rights, so that they can control that usage.
The GDPR Rights of Individuals include:
- Right to Be Informed (How and why are you using their data?)
- Right to Access (What data do you have and how you are processing it?)
- Right to Correction (Concerned with viewing and correcting incorrect data.)
- Right to Erasure (Ability to request that personal data be removed from your records.)
- Right to Restrict Processing (Concerned with stopping the processing of personal data.)
- Right to Data Portability (Returning their data to them.)
- Right to Object (There are different areas under this right, such as Legitimate Interest which carries their own specific regulations.)
- Right to Not Be Subject to Automated Decisions (Concerned with providing protection against the risk of bad, automated decision making.)
If you are a business owner who engages with residents of the European Union, it’s a good idea to research the guidelines to further determine what changes to make to your data storage and processing.
Here are a few online resources to help you learn more:
Note: Your Online Marketing Team is only providing this blog post for informational purposes, and it is not to be considered as legal advice. You should contact your own legal advisor for counsel regarding full understanding of GDPR and how it will affect your own organization.