Is GDPR coming to your side of the world? Very likely.
21st May 2018

Europe's landmark The General Data Protection Regulation (GDPR) is setting new standards for consumer protection compliance. It requires businesses to protect the personal data and privacy of EU citizens. It imposes harsh penalties for non compliance.

Companies all over the world doing business with EU are scrambling to become GDPR compliant by informing customers and soliciting their agreement on the information stored about them. Also they are beefing up security and internal procedures to prevent inadvertent or malicious leaks of customer data.

Ensuring privacy and security for our customer databases is nothing new, what is new though, is the stringent penalties that can be imposed and heightened monitoring. Wide ranging powers given to the EU authorities to determine and prosecute breaches has many worried. It is also not clear how the EU would impose penalties on companies operating outside the EU but dealing with EU clientele.

Currently it is affecting only those doing business with the EU which is significant but it is more than likely that other parts of the world will also adopt such strict guidelines. Especially Asia and particularly India, from where a lot of spam and junk originates. It might be known by other acronyms and programmes but the requirements will be similar.

Companies all over the world can preempt this by taking the effort to become compliant even if they are not doing business in the EU. After all ‘a stitch in time saves nice'.

What steps do you need to become GDPR compliant?

  • Taking consent for storing personal details that go towards identity – name, contact no, email etc. Parental consent for storing information about children below 16 years is compulsory.
  • Setting up a consent / opt-in mechanism on all web forms that require personal information with a clear way for customers to request removal from the database.
  • Assess and strengthen security measures for databases containing personal information.
  • Assess all APIs that might be accessing your database and ensure only authorized and necessary ones are allowed access.
  • Have a mechanism to convey any breach of security to the database customers with a clear way for them to either remove or reset the information provided.

So it's a good idea to evaluate our own customer databases and see if we can become more compliant so that when inevitably the GDPR or its equivalent, comes to our region, we are ready.

Related Posts
Difficult times call for renewed digital marketing efforts
5th October 2018   |   

When times are hard, the instinct for most businesses is to cut the seemingly non core activities such as digital marketing. In order to save costs, marketing budgets get slashed and plans are shelved. It is a seemingly natural thing for a compa

Continue Reading
Web design firms must work towards a deeper engagement with clients
10th August 2018   |   

20 years ago, when we started in this field, the website was a neat little marketing tool for businesses. A ‘nice to have’ but not necessary item for the marketing manager. But over the years the value and functionality of the corporate webs

Continue Reading
Quick Reads 4th July 2018 - A round of interesting stories from the web
4th July 2018   |   

This time we have an eclectic mix of links from the web. From pet friendly offices to AI's that can fool humans. It's Bring Your Dog to Work

Continue Reading
Book Reco: The Art of the Good Life: Clear Thinking for Business and a Better Life by Rolf Dobelli
18th June 2018   |   

Normally I am wary of self help books with their generic advice which is pretty much the same all over. But I was pleasantly surprised by this book. The author's easy style of writing, unique perspective and advise really makes this book a pleas

Continue Reading
Why many Indian companies struggle to leverage Social Media for their businesses
11th June 2018   |   

Everyone agrees that social media can be a powerful source for business and brand development. There is not a single marketing or communications manager who would dispute that. However there is a huge gap between what companies believe and how t

Continue Reading
quick enquiry