HOW DO I REMAIN GDPR COMPLIANT?

Maintaining the right protocols, procedures, processes and systems

GDPR IS HERE TO STAY

GDPR is the future. Once the new rules come into play, they won’t be going away. You might start off fully compliant, but how do you ensure you stay that way, stay within the law as new systems come on board, new protocols for customer contact are set in place, and innovative new communication methods are invented, for example, unforeseen and exciting new types of social and marketing media?

WHY IT’S A GOOD THING

The law is very clear, totally unambiguous. If you want to communicate with customers or prospects, you have to get their opt-in, their permission to do so. And you need to treat their data in precise ways. There’s no wriggle room. But why would you want to try to get around it?

Getting the right permissions means your databases and lists are appropriately qualified, warm, aware of your brand and business, actively happy to let you talk to them. And that’s pure marketing gold dust. GDPR is an excellent thing, so welcome it in, keep it in great shape and enjoy the ride.

GDPR AND THE FUTURE – IMPORTANT THINGS TO CONSIDER

  • Every time you make a change to your IT system, you’ll need to make sure those changes are compliant and don’t negatively affect your GDPR protocols
  • If you change your systems completely, for example, because of business growth or because your legacy systems are no longer man enough for the job, you’ll need to make certain they’re GDPR compliant from end to end
  • New staff will need to be trained in their GDPR responsibilities, and it should remain part of your staff handbook if you have one
  • Existing staff might need ongoing GDPR training to keep them up to scratch

PARTNER WITH GOOD TEAMS AND ADOPT BEST PRACTICE

It’s your job to choose best practice and stick with it. Unless you have the internal expertise and resources, it might suit you best to take on a GDPR IT partner, an organisation that understands the intricacies of IT systems and how they apply to the GDPR. That’s us, and we’re ready and waiting to partner with you for a productive future.

EXCELLENT GDPR RESOURCES

Here are some detailed plain language posts about the GDPR:

THE FUTURE OF GDPR – FAQ

Without valid consent, any personal data processing activities will be shut down by the authorities
Yes. Organisations that breach GDPR can suffer private claims from individuals demanding compensation.
The ICO has already fined Flybe and Morrisons for contacting customers without consent.
Yes, you can. You never know, it might prove easier to start from scratch and make a new database with the right permissions. Or it may be best to carry on and get permissions from as many people on your database as possible. We can help you decide.
If someone wants to stop you contacting them or holding their data, you have to do it quickly and accurately.
Article 39 lays out the ongoing responsibilities of a Data Protection Officer. You can read it here (https://www.privacy-regulation.eu/en/39.htm).