GDPR seems to be the buzz word that is on eveyone's agenda at the moment, especially as the clock ticks.
So what is GDPR? The General Data Protection Regulation (GDPR) is the European Union’s new legislation to protect the personal data of EU citizens.
Organisations have been given a two year lead in period to become compliant, ending 25th May 2018.
What is made clear in the GDPR, companies and/or organisations have to clarify exactly what data is collected, how it is stored and what it is used for.
So if you are a publisher and collecting data for forums, newsletters, competitions or running marketing campaigns you need to be mindful of the following:
First of all, make sure that your technical platforms are secure - Our advise is to change any forms, templates or technology that collects data from http to http (s).
What is HTTPS, and why do you need it?
HTTP stands for hypertext transfer protocol. It’s a protocol that allows communication between different systems. Most commonly, it is used for transferring data from a web server to a browser to view web pages.
The problem is that HTTP (note: no "s" on the end) data is not encrypted, and it can be intercepted by third parties to gather data being passed between the two systems.
This can be addressed by using a secure version called HTTPS, where the "S" stands for secure.
This involves the use of an SSL certificate -- "SSL" stands for secure sockets layer -- which creates a secure encrypted connection between the web server and the web browser.
A personal data breach is not just the loss of that data but a breach of security, resulting in the destruction, loss, alteration, unauthorised disclosure of or access to personal data.
The best approach is to show that you have taken all reasonable measures to ensure that data you have collected has been done to the best of your ability.
Want to learn more about GDPR and how to protect yourself? Send us an email at firstname.lastname@example.org and let us know how we can help.