Understanding the GDPR

Understanding the GDPR

The GDPR (General Data Protection Regulation) is a new law in the European Union (EU) going into effect May 25 of 2018. There are provisions of the new regulation that make it relevant for all countries with websites that do business in the EU.

What You Should Know About the GDPR

The GDPR was written to protect personal data collected and stored on websites. There has been some debate on whether the regulation is too far reaching. There have also been several discussions about its enforceability outside of the EU.

Essentially, the owner of a website doing business with a person in the EU that collects any personally identifying information has some responsibilities in the collection, and storage of that information.

The major responsibility is getting clear and honest consent from the user. This consent needs to clearly define what’s being collected, exist separate from other terms and conditions, and needs to be a positive affirmation (no pre-selected checkboxes). In addition, this consent needs to be revocable by the user.

There is a lot of complexity around which data is considered identifying as well. Name, address, email are obvious data points. However, IP address may also be an identifying piece of information in some circumstances.

The UK organization, ICO, has created some guidelines for the GDPR that answer a lot of questions about what the regulation calls for.

How You Can Prepare for the GDPR

The GDPR is coming and if you’re concerned about it the best thing you can do is understand it. Once you have that understanding you’ll need to consider the impacts that complying with the regulation have on your website.

The enforceability of the regulation is in question for the United States. You’re going want to set a budget to make changes to the way you collect information. Some things to consider are your mailing list signups, shopping cart checkouts, and what kind of analytics you’re running on your website.

If you’re collecting data on a form, you need to look at that data as it relates to the GDPR.

Don’t Panic

There is some time before the regulation goes into effect. We recommend that you learn as much as you can about the GDPR. There are some steps that you can take right now that will get you ready for compliance.

Many WordPress plugin developers are already working on making sure their plugins are GDPR compliant. So, there’s going to be a lot more information as we move closer to the regulation’s implementation.

Written by the Team at Pixel Jar

We hope you got something useful out of that post. If you'd like to read more we have an active blog with topics across the spectrum of website development. If you're researching information for a project we'd love to talk to you about it.

Project Management for Life

Project Management for Life

Last year one of the Pixel Jar staff, Dave Margowsky, decided to relocate. This event tested his project management skills in a real life setting. Since we work as a distributed team we embraced the move. After he was done we talked about writing a post that would be relevant for our readers. We’ll let…
Read More
Custom Website Design Processes

Custom Website Design Processes

This is the first article of a five part series that discusses approaches to custom website design. This first post provides a solid overview of the series. An Ideal Custom Website Design Process In an ideal world, there would be no limitations. When building websites, we’d create a fully custom website design. And we’d revel…
Read More
how-to-perform-a-website-audit_sidebar

Maximize your website's appeal and keep everything working for the best conversions.

How Can We Help You?

We want to build your next project.

Connect with Pixel Jar

Our Community

Subscribe to learn more about the goings on at Pixel Jar.

  • Note: Your email will be added to our CRM and be used to receive emails from Pixel Jar. You can unsubscribe at any time.

  • This field is for validation purposes and should be left unchanged.