Times have changed. Today, we do not know how valuable the data that we share with websites is.
Did you know – the value of each WhatsApp user by the time it got acquired by Facebook was $42? So my argument here is whether you tried reaching out to companies like WhatsApp and ask your commission! You could not even think about it because firstly you do not know, and secondly, WhatsApp had their policy to share data but you chose not to read them.
The implementation of GDPR forces websites to notify visitors that they are using cookies, location data, and other information that users are about to provide. Essentially, the concept of consent given freely, effectively, quickly, and specific is being restructured with new rules and regulations. This means that businesses need to be more transparent. Entrepreneurs and business owners do not have the option to skirt it and they must comply with the policies or face heavy fines.
What personal data are we talking about?
- First name, Email address, Address
- IP Address, location data
- Race, sexual orientation, religious and political belief
What Rights Do Data Subjects Have Under GDPR?
- Restrictions on processing
- Data portability
- Revision of automated decisions or profiling
To comply with GDPR, a website being the face of the business should tell their users that the website is GDPR compliant. There is a massive checklist to complete for being GDPR compliant.
Below are a few points that websites should take care of to be GDPR compliant:
Option to withdraw consent (opt-out)
Separate consent from T&C
Websites should make users acknowledge that it has a T&C page of their own. For this, they should be redirected towards it.
Seek less information
Remember those applications where they ask more information than they require even when the app’s sole purpose has nothing related to the information they are asking? Well, even a website should not request information if they do not require either from social media apps/ widget or contact forms.
Make nothing by default
For example, if a user has the ability to choose whether they want to receive promotional emails, it is unacceptable for the “yes” box to already be checked. Everything should be unchecked by default.
SSL Certificate is green!
An SSL gives the website a boost in subconscious minds of visitors about the overall security of the website.
Data protection officer
IP address tracking message to users
It is mandatory for websites to have users accept the fact that they are using cookies as data. Cookies are used to build better customer experience. According to GDPR, websites must “get their clear consent to process the data.”
Data breach procedure
One of the purposes of GDPR is to improve a customer’s journey for business to make themselves better. Making the journey less offensive and more productive is something any customer would want. Customers need to know what data they are providing and websites must convey what they are acquiring.
About Vikas Bhatt
With 10+ years of B2B Lead Generation, Vikas Bhatt now runs OnlyB2B, a reputed B2B Demand and Lead Generation company from India that serves most European nations, the US, Mexico, and Canada. Vikas is a renowned Demand Generation expert, motivational speaker, and a B2B entrepreneur. You can connect with Vikas over email: firstname.lastname@example.org