skip to Main Content

The GDPR and How I have Handled It

The General Data Protection Regulation (GDPR) (EU) is a regulation in EU law on data protection and privacy for all individuals within the European Union. It also addresses the export of personal data outside the EU. The GDPR aims primarily to give control to citizens and residents over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU. If you would like to find out more about the GDPR you can visit the website here.

How I have handled the GDPR in my Business

As most of you are aware I am actually based in Australia. However, the GDPR still affects my business, because it turns out that just under half of my email contacts are from the EU. And that when people from the EU come to my site for any information that I need to be covered.

So today I am going to walk you through what I have done over the last few days to get me up to speed.

But I am going to tell you this.

I am not finished rolling out the changes.

After looking at the newly created opt-ins that I was so proud of late last year (over 30). Which have grown my email list very nicely over the last 6 months. I have decided to change things up and go back to a slightly old school way of collecting email subscribers. I will talk more about this later.

So let’s get started with what I did first.

 

1. Update my privacy policy

From my understanding, if someone from the EU comes to my website and views anything or opt-ins for a freebie from me then they need to be aware of what happens with the data I collect from them. Soooo, after painstakingly researching and talking to a professional for a few hours. I have an updated privacy policy which clearly states what my website does and how it collects information and where it is stored.

What I do like is that I am now 100% more transparent about this than I use to be. Which is nice, because frankly my last Privacy Policy was taken from my old blog and jazzed up and rather dated.

For those of you who are reading this. I just want to be clear that – I am currently not using the fanciest ways to spam you with ads, but perhaps in the future, I will. But at the moment I look at my data, for trends in site activity, my email list to see where my subscribers are based and what freebies they love the most.

2. My Email List

This one took me a whole day. First of all, I took a look at my list. And it turns out that half of my list was either from the EU or they did not have a location. The GDPR wants you to be clear about the location of your email list. So I segmented my list to ‘Uknown and EU’. From here I then created an automation series to let these people know that I have updated my privacy policy and that they have the chance to stay on my email list and give consent or that I will delete their details.

This may all seem rather rash for a small business in Australia. But I am confident that a little email list cleaning doesn’t do any harm and that I have a feeling that it won’t take long for other countries to roll out other data protection regulations. And you know what I think they should.

So my Automation has been sent and will now take ten days to complete. After the ten days for all the people who did nothing. There will be a big delete. Because get this – I can not actually keep this data. If I am keeping it on record even in my email server I have to prove that the individual gave consent.

Right now I am making sure that I have consent.

3. My Opt-ins and Freebies

To be honest. I am totally dreading this one. Today I took a moment to try and fix them all but it turned out that each opt-in almost needed to be re-created and then applied to my website (cursing leadpages right now). Lucky for me I walked away from my computer for a few hours after the nightmare of doing just one took half an hour, to think about it.

I have come up with a solution!

Back when I created my first ever juicy opt-in for my website it was a stand along page (yep a boring one pager) but it outlined everything I offered in my newsletter. It was awesome – you can see it here. So it use to have an opt-in form there and I can do that again but on my site with the new improved GDPR checkbox to make sure people actually want to sign up to my email list.

Which has me thinking about ditching 30+ opt-in offers and streamlining. Yes, I am going to create a couple of very cool stand along subscribe pages instead. Now, this is going to happen over the coming weeks because to be honest, I don’t have the time to get it all done before May 25. But I do intend to have it rolled out by June 30. So expect some change over here and some newly improved opt-ins.

For those that only have 1-2 opt-ins, it should be rather easy to add a checkbox to your subscribe form and create a double opt-in confirmation. But for me, it just doesn’t seem worth it. I feel it easier to create three new freshies and call it a day.

 

So there you have it. My GDPR business breakdown for me.

NOTE: I am not an expert on all things GDPR, this is all my opinion and what I am doing for my business to comply. I highly recommend you talk to someone who does understand the GDPR to suit you and your business needs.

 

 

Leave a Reply

Your email address will not be published. Required fields are marked *

×Close search
Search