First, we are a bit late writing this blog post because we’ve been spending the last two weeks getting our international clients ready for GDPR day – yes, TODAY! May 25, 2018 – the day on which the cyberworld loses its collective mind.

In case you’ve been living your life and not watching those Privacy Policy emails pour into your inbox, here’s a quick and very basic explanation. (Note: We are not lawyers or experts in cyber law, and haven’t been in Europe since a memorable high school trip to France so we are by no means experts. But we’ve read a lot and have been living the GDPR life for the past few weeks so the following information is what we’ve based business decisions for us and our clients on.)

Give Me a G…Give Me a D…

The GDPR – General Data Protection Regulation – is a new law that went into effect today in the European Union and requires online businesses connected to the EU to take steps to protect our data.

Despite the hell that might be required to become compliant, it’s a good thing, really. It means that businesses and companies need to:

  1. Be up front and honest about what they are doing with your private information (everything from your name and email address to your financial details and health records).
  2. Get your permission to send you emails, newsletters, marketing, etc.
  3. Delete any and all information they collected about you and an easy way to request this.

So as a consumer, this is fantastic news. You now have control over cyberspace and your own personal details, and can make sure only businesses you like and trust can keep them. Here at Consulting Unboxed, we strongly believe in the right of privacy, and most importantly, the right of choice! So we like this.

Now, as a business owner, what does this mean for you?

GDPR + the EU + YOU

So, you business owners sitting in the US…yeah I’m talking to you – bet you’re wondering if and why this effects you. Like why am I writing about it sitting at my laptop in sunny New England this fine Memorial Day weekend?

Well, the GDPR effects ALL businesses IF they have clients who live in the EU OR if they have any contacts on their list who live in the EU. So if you’ve been working with Client A who lives in Austria, then it impacts you. If you have a contact on your list from the UK, then you need to follow it.

I bet you are going over your list right now wondering if you have anyone from the EU. Well let me interrupt your ruminating, cause are you ready for the catch? Most of us build our lists and have only names and email addresses on it. We have NO idea if Elsa is from Sweden or if Liam is from Ireland…or if they live down the street. So you may think you’re safe with your online business in Nebraska, but you just don’t know.

And with fines resulting in millions of Euros for not implementing the changes, I say it’s better safe than sorry. No matter how small your business is. Plus protecting someone’s privacy is just kind. And we like kindness. People want to do business with kindness.

Bottom Line – Whatcha Gotta Do

So before you start to panic and fall down the rabbit hole that is interpreting the GDPR requirements, Alice, we, as our Privacy Policy says, have your back.

Here’s what you need to do:

  1. Update your Privacy Policy to reflect who you are, how you collect and use information, your cookie policy, etc. Here’s ours.
  2. Update your opt in forms so there is a place that people can give explicit permission for you to email them. Most email marketing systems now have a way to do this using checkboxes.
  3. Update your systems so there is evidence that you now have informed consent from contacts moving forward*.
  4. Set up a way people can easily alert you that they want their data completely removed from your system – and then do it. Immediately.
  5. Eventually you might need a pop up on your site for the cookies, but that isn’t mandated until 2019.

*There is some debate whether you need your list to re-optin or not. Some opinions say no, but we lean toward using this as an opportunity to clean up your list and make sure it consists of people who really want to hear from you. (If you’re on our list and want to be off, simply email us at If you’re not on our list and want to be on, and want a free gift – so not a bribe, just expressing our gratitude – click here.)

Now how complicated this all ends up being for you and your business depends on how complicated your optins and systems are. Infusionsoft and Mailchimp have put out detailed step-by-step guides to help you comply with the regulations and have become my new favorite email marketing systems. I’m still trying to find help with other ones…yeah I’m looking at you Ontraport.

Oh and speaking of…yes, we can help you. If you’re sweating this out cause it’s after the deadline and you’re like, um crap, I’m noncompliant…we are here as always to help. We like rebels, but we don’t like unkindness. And not protecting privacy is the wrong kind of rebel. Simply reach out to and we will get back to you!

And now, cause it IS officially the holiday weekend, we all deserve a bit of fun – click here for hilarious GDPR memes! And we dare you to do a search for #GDPR on any social media outlet and NOT pee your pants laughing.

And in the comments, we’d love to hear your fave acronyms for GDPR. Our personal fave is Get Drink Please Rightaway which is what we are going to do!

Thinking of hiring a team member?

Get this ready made checklist to help you determine what you want that VA to do!

You have Successfully Subscribed!