First, we are a bit late writing this blog post because we’ve been spending the last two weeks getting our international clients ready for GDPR day – yes, TODAY! May 25, 2018 – the day on which the cyberworld loses its collective mind.
Give Me a G…Give Me a D…
The GDPR – General Data Protection Regulation – is a new law that went into effect today in the European Union and requires online businesses connected to the EU to take steps to protect our data.
Despite the hell that might be required to become compliant, it’s a good thing, really. It means that businesses and companies need to:
- Be up front and honest about what they are doing with your private information (everything from your name and email address to your financial details and health records).
- Get your permission to send you emails, newsletters, marketing, etc.
- Delete any and all information they collected about you and an easy way to request this.
So as a consumer, this is fantastic news. You now have control over cyberspace and your own personal details, and can make sure only businesses you like and trust can keep them. Here at Consulting Unboxed, we strongly believe in the right of privacy, and most importantly, the right of choice! So we like this.
Now, as a business owner, what does this mean for you?
GDPR + the EU + YOU
So, you business owners sitting in the US…yeah I’m talking to you – bet you’re wondering if and why this effects you. Like why am I writing about it sitting at my laptop in sunny New England this fine Memorial Day weekend?
Well, the GDPR effects ALL businesses IF they have clients who live in the EU OR if they have any contacts on their list who live in the EU. So if you’ve been working with Client A who lives in Austria, then it impacts you. If you have a contact on your list from the UK, then you need to follow it.
I bet you are going over your list right now wondering if you have anyone from the EU. Well let me interrupt your ruminating, cause are you ready for the catch? Most of us build our lists and have only names and email addresses on it. We have NO idea if Elsa is from Sweden or if Liam is from Ireland…or if they live down the street. So you may think you’re safe with your online business in Nebraska, but you just don’t know.
And with fines resulting in millions of Euros for not implementing the changes, I say it’s better safe than sorry. No matter how small your business is. Plus protecting someone’s privacy is just kind. And we like kindness. People want to do business with kindness.
Bottom Line – Whatcha Gotta Do
Here’s what you need to do:
- Update your opt in forms so there is a place that people can give explicit permission for you to email them. Most email marketing systems now have a way to do this using checkboxes.
- Update your systems so there is evidence that you now have informed consent from contacts moving forward*.
- Set up a way people can easily alert you that they want their data completely removed from your system – and then do it. Immediately.
- Eventually you might need a pop up on your site for the cookies, but that isn’t mandated until 2019.
*There is some debate whether you need your list to re-optin or not. Some opinions say no, but we lean toward using this as an opportunity to clean up your list and make sure it consists of people who really want to hear from you. (If you’re on our list and want to be off, simply email us at email@example.com. If you’re not on our list and want to be on, and want a free gift – so not a bribe, just expressing our gratitude – click here.)
Now how complicated this all ends up being for you and your business depends on how complicated your optins and systems are. Infusionsoft and Mailchimp have put out detailed step-by-step guides to help you comply with the regulations and have become my new favorite email marketing systems. I’m still trying to find help with other ones…yeah I’m looking at you Ontraport.
Oh and speaking of…yes, we can help you. If you’re sweating this out cause it’s after the deadline and you’re like, um crap, I’m noncompliant…we are here as always to help. We like rebels, but we don’t like unkindness. And not protecting privacy is the wrong kind of rebel. Simply reach out to firstname.lastname@example.org and we will get back to you!
And now, cause it IS officially the holiday weekend, we all deserve a bit of fun – click here for hilarious GDPR memes! And we dare you to do a search for #GDPR on any social media outlet and NOT pee your pants laughing.
And in the comments, we’d love to hear your fave acronyms for GDPR. Our personal fave is Get Drink Please Rightaway which is what we are going to do!