GDPR is now officially in effect, and if you send emails to, process, or collect information from people in any of the 28 European Union countries, you are subject to the General Data Protection Regulation (GDPR). Among other things, this new regulation requires:

  • Consent – you must have a separate, not pre-checked opt-in consent to marketing efforts and agreement your terms & conditions or privacy policy.
  • Data Portability – If requested, you must provide all information collected about an individual in a commonly used and machine readable format.
  • The “Right to be Forgotten” or Data Erasure – Entitles the data subject to have the data
    controller erase his/her personal data, cease dissemination of the data, and potentially have third parties halt processing of the data as well.
  • 72 Hour Breach Notification – It will be mandatory if your company experiences a data breach that is likely to result in risk for the rights and freedoms of individuals.

…and that’s just a sampling of the new rules. Also, penalties for failure to comply are stiff, your company can be fined up to four percent of annual global turnover or €20 Million, whichever is greater!

CFE Media & Technology is taking the GDPR very seriously! For more information, and for resources available to you click here.