Article

J Cromack
J Cromack 5 December 2017

GDPR: the ultimate checklist

There are now mere months until the General Data Protection Regulation (GDPR) becomes enforceable. It is set to have an unprecedented impact on organisations from every industry if they hold the personal data of EU citizens on their databases, and has the scope to turn marketing as we know it on its head.

Even at this late stage there is still a great deal of uncertainty and much confusion from organisations about GDPR and what they need to do to become compliant. Although many view it as a huge task and a necessary evil, in reality, it offers a clear avenue for organisations to add meaning, value and power to data.

By going beyond data compliance, savvy organisations can build better relationships with their customers by rebalancing trust, giving them control of and helping individuals realise the value of their data.

Of course, the first step in this journey to lead the way in the new consumer democracy is to ensure everything is in order for GDPR compliance. This is precisely why we have put together the ultimate GDPR checklist.

Using the acronym – OPT-IN, it sets out the activities businesses will need to consider – and act on – by the enforcement date of 25th May 2018.

Organisation

  • My board understands and supports GDPR
  • We have checked we use plain English
  • We have assessed and updated our privacy policy
  • We have a data protection officer
  • We know which departments will be impacted
  • We have assessed the level of corporate risk
  • We understand how we communicate with our customers
  • We have checked whether we are regulated by other legislation e.g. PECR or MiFiD II
  • We can be fully accountable

Processes and systems

  • We know the source of all data
  • We know what data we are holding
  • We are transparent about the use and sharing of data
  • We can clearly demonstrate that we have permission to use this data
  • We have processes in place to delete data
  • We have systems in place to manage a data breach
  • We can comply with an individual’s right to portability

Technology

  • We can provide details of all data electronically
  • All data is securely stored and safely encrypted
  • We can fulfil the ‘right to be forgotten’
  • All new technology has privacy by design built-in

Information and rights of access

  • We have updated all our permission statements and they are ready for GDPR
  • Individuals can easily find out what information we hold on them
  • We can verify individual’s ages and identify children for specific consent
  • We have developed template responses
  • We know what additional information needs to be collected to adhere to GDPR

Next steps

  • We have tested an individual’s experience when requesting consent
  • Individual’s can access their own data and update their preferences
  • We can put it right if we get it wrong
  • We can restrict profiling
  • All departments are fully aware of policies, procedures and the new GDPR regulations

Data has the potential to revolutionise every facet of business, so much so that it has been dubbed the ‘fourth industrial revolution’. However, it is important to remember that behind each piece of data is an individual.

At its heart, GDPR is all about making sure that individuals have ultimate control over their data and can be confident that it will be used in a way that is going to make their lives easier – something that should be music to everyone’s ears.

We strongly urge organisations to embrace the opportunities that GDPR offers and use it as a chance to reimagine their approach to both data and customer relationships for the better. 

Please login or register to add a comment.

Contribute Now!

Loving our articles? Do you have an insightful post that you want to shout about? Well, you've come to the right place! We are always looking for fresh Doughnuts to be a part of our community.

Popular Articles

See all
How to Review a Website — A Guide for Beginners

How to Review a Website — A Guide for Beginners

A company website is crucial for any business's digital marketing strategy. To keep up with the changing trends and customer buying behaviors, it's important to review and make necessary changes regularly...

Digital Doughnut Contributor
Digital Doughnut Contributor 25 March 2024
Read more
The Impact of New Technology on Marketing

The Impact of New Technology on Marketing

Technology has impacted every part of our lives. From household chores to business disciplines and etiquette, there's a gadget or app for it. Marketing has changed dramatically over the years, but what is the...

Alex Lysak
Alex Lysak 3 April 2024
Read more
The IoT-Connected Car of Today—Case Studies

The IoT-Connected Car of Today—Case Studies

Imagine a world where your car not only drives itself, but also says intelligent things. This would look like an impossibility about five years ago, but today the IoT is already breaking fresh ground for tech...

Ronald van Loon
Ronald van Loon 10 March 2017
Read more
10 Factors that Influence Customer Buying Behaviour Online

10 Factors that Influence Customer Buying Behaviour Online

Now is an era where customers take the center stags influencing business strategies across industries. No business can afford to overlook factors that could either break the customer experience or even pose a risk of...

Edward Roesch
Edward Roesch 4 June 2018
Read more
AI-driven Personalisation Dominates the Future of Travel and Hospitality Marketing

AI-driven Personalisation Dominates the Future of Travel and Hospitality Marketing

Travel and hospitality marketing is on the verge of dramatic transformation. Personalisation of marketing communications is moving from dream to necessity, and the change is putting marketers in the driving seat.

Michael Nutley
Michael Nutley 3 December 2024
Read more