On the 25th of May, 2018, the GDPR became law. The multitude of provisions to protect users privacy are a bit of a legal minefield for marketers, who are always hungry to use customer data where ever possible so they can better target customers with propositions. Given its importance, we have shared much advice from legal specialists on the Implications of the GDPR for marketing in UK and Europe.
In this post we're alerting you to the opinion that matters most in the UK - that of the Information Commissioner's Office who is responsible for implementing GDPR in the UK. In this new guidance of implementing the GDPR in the UK the ICO provides more information to help companies become GDPR compliant over the next few months, so make sure to utilise the resources they produce to help your business.
The good news is lawmakers have given businesses a full two years to become compliant. Sound like a long time? You'll be surprised at how fast it will go. Here is the GDPR implementation timeline.
To help companies make the most of that two years and ensure that they don't miss the deadline for being compliant the information commissioner's office have helpfully created a 12 point checklist for conforming to the GDPR's regulations.
Make sure the leaders in your organisation are aware of the timescale for implementing necessary changes for being compliant. Don't assume they've got a handle on it!
Make sure to keep a record on what personal data you hold, where it comes from and who it is shared with.
You should review your privacy notices and plan for how they will have to change to be GDPR compliant.
Check your processes to make sure you will be able to delete a person's data if they request it or provide them with their data if they request it.
Think about how you will handle requests within the new timescales and provide any additional information.
Identify the legal basis you have any data processing you do. Make sure to document it thoroughly.
Review how you are getting your customers consent for any data collection, and check that it meets new guidelines. If not, plan how you will make the changes.
You'll need to put systems in place to verify ages and get parental consent for any data collection on children.
You should ensure you have the right procedures in place to detect and investigate a personal data breach.
Plan how you will pass a privacy impact assessment, and implement any changes required to be compliant.
Designate a data protection officer if your organisation is large enough. If too small for a dedicated officer, you still need to assign the responsibility for compliance to someone in the business.
If you organisation operates globally you should make sure what supervisory authority different parts of your organisation falls under.
The 12 pointers provided by the ICO are a great place to start, and help to structure your thinking when it comes to becoming GDPR compliant. But they're just a first step and a handy way to check you've got things covered. Use these 12 points to build a much more detailed timeline for implementing the changes you'll need to make to become compliant. Doing so will take all sorts of different departments working together, so make sure to get all the stakeholders on board and don't set any unrealistically short timeframes that lead to overrun. Once you start planning all the changes, you'll need to put in place you will soon find that two-year implementation window starting to look a little narrow. So make sure you don't put it off, and start planning now.
For more information on the 12 steps mentioned above, you can download their short report on the 12 steps to take now.
By Robert Allen
Rob Allen is Marketing Manager for Numiko, a digital agency that design and build websites for purpose driven organisations, such as the Science Museum Group, Cancer Research UK, University of London and the Electoral Commission. Rob was blog editor at Smart Insights from 2015-2017. You can follow Rob on LinkedIn.
This blog post has been tagged with:
Implications of the GDPR for marketing in UK and EuropeTurbocharge your results with this toolkit containing 11 resources
The Digital Marketing Strategy And Planning toolkit contains:
Start your Digital Marketing Plan today with our Free membership.
Recommended Blog Posts
Discover how to use our customer journey mapping template to create actionable insights to improve your marketing In today’s digitally connected world, customers have a myriad of choices when it comes to connecting with brands and businesses. There are many …..
Our guide to creating a SWOT matrix analysis to prioritize digital marketing strategy with the TOWS technique A SWOT analysis is an essential part of any business or marketing plan. It allows you to create a plan of action based not …..
It’s not enough to create buyer personas and leave them getting dusty on the shelf. Find out how to apply customer personas to inform each stage of your marketing strategy What are marketing personas? Customer or buyer personas are fictional …..
