So what is GDPR (in a nutshell we promise)?
The purpose of GDPR is to place more responsibility on companies that are holding the data of users in order to keep this safe. Along with this, EU citizens can at any point request what information has been collected on them and ask for it to be updated or removed. So in order to be able to do this brands need to keep an updated list that documents how someone opted in and what date they did this.
Who does it affect?
If you have an email database including EU users, then you’ll need to comply for those subscribers. Or if you have a website that's visible in the EU and you're advertising to people in the region, then you’ll need your website to comply.
What steps can you take?
If you’re in one of the above situations here's the ways in which you can comply:
Review your privacy policy with your lawyer to include detail on what data your website is storing and utilising. There are some great tools that can identify what data your site is collecting such as Cookiebot.
Discuss with your lawyer whether there is a need for you to implement an opt-out popup on your site and a way to collect your user's information. We have some tools to do this on your website if you decide it's necessary (just like OneTrust).
Review your email signup forms to make sure you have an opt-in box that’s not pre-ticked. The good news is MailChimp has already implemented systems on their forms and a quick update to reflect this on your website will do the trick.
How can we help?
We have a series of solutions for our clients who have identified that they are needing to put some systems in place for GDPR compliance. We suggest seeking legal advice and then giving us a call so we can talk through.
Give us a call or email hello@firebrand.nz