Unless you were living under a rock it was hard to ignore anything and everything GDPR Compliance related last week. Whether it was the constant inflow of “privacy policy updates” to your inbox or panicking over trying to make your own website compliant by the 25th, chances are the majority of your time during the week was taken up with GDPR-related issues.
As you may be aware the 25th of May was the introduction of the GDPR law and it is these rules that are laid out as part of the regulation that will be enforced in the future. To protect your business from fines for non-compliance it is vital that you make sure you are meeting the standards set out by GDPR.
Whilst every website is unique and will require different changes to be implemented depending on their respective industry, there are a few things that every business must make sure they have done across the board to be in line with GDPR compliance. These are such things as:
Cookie Plugin
Your website must have a notification upon entering the site that alerts users that your site has cookies, the option to view and disable these cookies must be presented to the user to be GDPR compliant.
Privacy Policy
You must have a privacy policy and links to your policy enabled throughout the site.
Cookie Policy
You must have a cookie policy and this must be linked to in the aforementioned cookie plugin notification.
Data Statements
Under any forms where users are inputting information to you such as contact forms you must have a visible statement below it which outlines what you will be using the data received for.
Terms and Conditions in checkout
If your site has an E-commerce element you must have an opt-in box that users must tick that says “I have read and understood the terms and conditions” before they input their card details to complete a purchase. It must be mandatory for the box to be ticked to complete the purchase and a link to the terms and conditions should also be available.
These 5 are a few important elements that must be implemented in your quest towards GDPR compliance, it is not however the full exhaustive list. Depending on your website there may be many more changes which need to be made or a select few more may only required.
For a full comprehensive review of your Website by 2Cubed which will outline exactly in our opinion what is required to aid your website towards GDPR compliance please feel free to get in contact with us today!