3 things your website needs for GDPR website compliance

The GDPR wave has come and gone, but I still see countless websites that don’t comply with the more transparent regulations. Below are the 3 things your website needs for GDPR website compliance.

1. Privacy Policy

This is arguably the most important element, as providing clear, concise information about how you obtain, manage and share data, is essential for GDPR website compliance.

Your privacy policy should inform the reader first of all, how data is managed internally, what systems you use and what steps you take to ensure its kept secure. You will also need to advise which circumstances necessitate you to share their data, and who you share their data with.

Finally, the policy needs to include clear instructions on how an individual can opt-out of all further communications from you, and have their details permanently removed from your system. This is a vital piece of the puzzle which not all companies are currently complying with.

2. Opt-in

Anywhere that you’re capturing personal data on your website e.g. someone’s name, email address, telephone number etc, needs to have a compulsory opt-in checkbox that the user must tick prior to submitting their information.

This tick box should include both a link to the full privacy policy, as well as a clear, concise explanation as to what their data is going to be used for in that particular instance.

3. Opt-out

Once a user has submitted their information, they need to know how to opt-out. Of course, this information should already be documented in the privacy policy on your website, however it’s a good idea to reinforce that by setting up automatic email responses to clients who send you their details, with information on how they can have their details removed from your system should they wish.

Summary

GDPR compliance isn’t really that complicated, and the scaremongering going on when it was first introduced, was primarily carried out by unethical companies looking to earn a quick buck by causing unnecessary panic.

As long as you’re transparent about how you manage your data, who you share it with and how an individual can have that information removed from your database, you’re pretty much ticking all of the minimum requirement boxes.

If you require assistance with your GDPR website compliance, you can get an instant quote, book a free consultation, or speak to us on LiveChat.