What is GDPR?
If you have a small business card type website, don’t live in the EU, or have been on vacation for the past couple of weeks, you may not have missed the buzz about General Data Protection Regulation (GDPR) compliance. If you have a website, then you want to know what GDPR is. Give us 4 minutes and we will get you up to speed.
From all the articles that I read – Reshiftmedia.com gave the clearest (least legalese techno jargon) explanation that I found:
“The General Data Protection Regulation (GDPR) is a set of rules designed to give EU citizens more control over how companies from all over the world are allowed to use their data. Companies must be GDPR compliant by May 25, 2018.
Under its rules, EU citizens have the right to:
- Know exactly how their personal data is being processed
- Get access to the personal data held about them
- Ask for incorrect, inaccurate or incomplete personal data to be corrected
- Request that personal data be erased when it’s no longer needed or if processing it is unlawful
- Object to the processing of their personal data for marketing purposes
- Request the restriction of the processing of their personal data in specific cases (e.g. they can ask that certain companies not be allowed to process their data)
- Receive their personal data in order to send it to another business
- Request that decisions based on automated processing concerning their personal data are made by natural persons, not only by computers.”
I have a website, but I don’t live or work in the EU, so why should I care?
According to Reshiftmedia.com’s well stated explanation: “No matter where you live, where your business operates, or who hosts your website, if you target, market, or do business with EU citizens, you are affected by the GDPR.” For more information read Reshiftmedia.com blog posts on this topic.
I use my website as a business card. I don’t have users login or post comments. How am I collecting data?
Surprise! Google analytics collects data from your site visitors as does a number of plugins esp. but not only ones that allow for comments. If visitors post comments, login to your site, use your site search or purchase items on your online store – you are collecting their data. You can easily test your site to see what type and how many cookies you are using with the free Attacat Cookie Audit Tool. Just open Chrome and visit Attacat‘s website. Follow the install and testing instructions and you will be able to view all the cookies on your site. Attacat also helps you write up your cookie info page. Here is the page that came from testing my site with Attacat: http://davidsconsultants.com/cookies/ Create your own cookie page and now you are another step closer to compliance.
Download the free plugin GDPR Cookie Consent from your dashboard plugins>add new. Once activated. Go through the settings choosing what works best with your site. Here is where you can add a “reject” in addition to the “accept” cookies button. When you review the
Questions, feel free to contact me. For more information about GDPR in Israel, click here.