GDPR & Privacy

Since 2018, the “General Data Protection Regulation” (GDPR) applies throughout the European Union. This new privacy law contains rules in the field of privacy protection. Customers and consumers get more rights; companies more obligations. If you do not comply with this, you risk hefty fines. These can amount to 4% of your annual turnover. Make your company GDPR-proof with our GDPR documents. Which documents you should have depend on your situation.

What are the key changes under GDPR?

Some of the key changes under GDPR include the following:

• The right to be forgotten: Individuals have the right to ask companies to delete their personal data.
• The right to access your data: Individuals have the right to access their personal data and find out what information companies hold about them.
• Right to change or delete data: Individuals can ask companies to change data they think is inaccurate or delete it altogether.
• Data breach notification laws: Under GDPR, companies must notify their national supervisory authority of serious data breaches as soon as possible so that users can take the necessary steps to protect themselves if their data has fallen into the wrong hands.
• Consent policies: There are stricter rules around seeking and processing consent for the use of personal data. For example, pre-ticked boxes do not meet GDPR requirements. Instead, you should only seek express consent from individuals with a specific opt in option for sharing information.

Companies must also provide clear information about what customers are agreeing to when they give consent (for example, when they sign up for your website).