GDPR for small businessesWhat does it mean?
The introduction of new legislation around data protection, which comes into force on 25 May 2018, is a big deal. GDPR for small businesses as well as large companies could appear daunting at first. A few simple steps will get you well prepared and fully protected ahead of the GDPR deadline.
Here’s our guide on how to implement GDPR for small businesses to secure confidence from your customers and avoid a nasty financial penalty for noncompliance.
- what, how and why personal information is collected.
- who are the third parties you share that information with?
- what this will mean for the person.
- how people can review, request changes or complain about the use of their data.
GDPR legislation demands that privacy policies are accessible and straightforward so everyone can understand them so keep it simple and avoid using jargon.
Get an SSL certificate
A Secure Sockets Layer certificate will give customers peace of mind that you’re ensuring that their data is safe. This level of protection encrypts the transmission of data. An SSL certificate gives your website a padlock symbol in the browser bar to demonstrate its security. It will also stop Google Chrome from alerting your website visitors that the site may be non-secure which could deter people from clicking on your website.
Introduce an opt-in function
It’s not enough to assume that recipients of your marketing communications want to hear from you. You must get explicit consent to contact anyone. You must log consent as your customers can request a record of when they gave you permission and for what purposes. Give people the option to tick a box to confirm that they are happy to hear from you on all contact forms, registrations and check out pages. Do not pre-tick this box. Keep a clear record of every update, amend, addition or deletion to your opt-in list to guarantee compliance.
Give your customers an opt-out function too
Your customers have the right to change their minds. They can tell you when to stop contacting them whenever they want. And it is your responsibility to make it an easy process. This includes an unsubscribe option in email, opt-out landing pages on your website or, for offline communications, a phone number or address. Just like your opt-in list, keep a ‘do not contact’ record as well and stick to it.
The team here at The Typeface Group can help get your business fully compliant with the new GDPR regulations. Contact us to find out more.
GDPR blog Series
Marriage made in heaven - Meta descriptions & SEO titles If the words Meta Descriptions and SEO titles mean nothing more than website techy jargon to you, then this blog should prove extremely useful. One supports and complements the other. Together they support your...
Jenya Steanson joins Team TFG. It’s a new year and we’re over the moon to welcome a new member to Team TFG, Jenya Steanson, as our Senior Design Executive. Here, she talks about what she will be bringing to the table at TFG and her love for all things feline. It’s...
How to get your website audience to engage with your site. How to get your website audience to engage with your site. Getting your website audience to actually engage with your content in this day and age can be tricky. The web is flooded with useful content, blogs,...