New European laws : The GDPR (General Data Protection Regulation)
With the establishment of the new European laws, the control of private life is now more important than ever. The different consents needed for different marketing practices used by different companies are therefore very important.
To summarize, this law asks you to collect consents, keep the proof of consent, secure the personal data transfer and inform the user of his rights. Before we get into the specifics about this law, let’s talk about the different types of opt-ins and why would each one be useful.
All proof of consent demanded by the GDPR is: who gave consent, when did they give consent and to what did the user consent. (Who, what, when)
Other than the rules of consent, the GDPR needs you to inform all your contacts on their rights and to let them know what you are doing with the data that you collect from them in your subscription form. You also need to let the users retrieve their consent.
Here is a list of the rights that must be respected at all times:
- Right to being informed: You need to inform users about the use of their data, for how long the data will be kept and if it is going out of the European union.
- Right to access their data, to change them or delete them: the user must be able ask for a copy of the data being collected, ask for a correction or suppression.
- Right to forget
- Right to transfer their own data elsewhere
- Right to intervene in an automated system
- Possibility of appeal if rights are not respected
The GDPR is an important step in the right direction for the respect of personal data. This will lead to a better world of client-company relations, to a more protected user and to a more conscious use of everyone personal data.