The New General Regulation (GDPR) of the EU (2016/679) on the Protection of Personal Data has found several companies exposed. The Implementation of the Regulation has entered into force on 25/05/2018. According to the New Regulation, you will have to harmonize your business both offline and online with the requirements of the new law. Does the New Regulation affect website owners? The answer is YES!
In web hosting MyIP we can apply all the necessary actions, on your website or in your online store so that it is GDPR Compliant.
Below we list the main actions.
SSL Certificate Installation
HTTPS (Hypertext Transfer Protocol Secure) is used to declare a secure HTTP network connection. Designed to encrypt and securely transfer data from users to the website or online store.
The type of data you collect.
How do you use them?
How do you protect them?
The time you keep them.
Full compliance with the GDPR is required for the plugins you use on your website!
Limit the data you collect.
No consent field should be defaulted on contact forms! Gather the absolutely necessary data for your communication and make sure to keep them for the period ONLY that you need. Then they must be deleted!
EMail Marketing Campaigns.
EMail Marketing is the most efficient way to promote and communicate with your customers and partners! However, re-consent of members is required (members are those who have given their consent in the past, recipients from purchased lists are not considered members).
Regarding the operation of a website, the main points that the GDPR focuses on are:
Right of access and portability
It is now mandatory to have a method for exporting user data either in CSV format or in another format that is commonly used. In cases where the website was developed using one of the popular CMS (eg WordPress, Joomla) there are relevant plugins that can do the job. Otherwise the development of a custom software is one way, so you should soon turn in this direction.
Right to Oblivion
You must design and embed in your site a process for deleting personal data when requested by the user. Of course there are exceptions that allow you to retain specific user data.
GDPR compliance is not a shooting star that will go out in a few months! Compliance is one way and must be treated consistently & organized!
Has your company or organization complied with the new data protection rules? Contact the Development Department of MyIP, and find out what we can do for you!