Have You Seen This GDPR email?
Important updates about the General Data Protection Regulation (GDPR)
The above is the subject of an email sent out by Google laying out the actions they are taking to comply with the General Data Protection Regulation (GDPR). Google is making changes to its services – free and paid – to give advertisers and users of Google Analytics the ability to control data retention and who they target advertisements at and how.
GDPR affects all businesses dealing with European Union (EU) citizens, not just Google. The regulation affects any organization that contains information on EU citizens, regardless of where it is based.
What is GDPR?
GDPR is short for the General Data Protection Regulation. It is a law approved by the EU Parliament on 14 April 2016. Organizations have had plenty of time to prepare for the regulation. It goes into effect on May 25, 2018. Fines for breaking GDPR regs are huge at 4% of annual global turnover for or €20 Million.
GDPR includes the following rights for individuals:
- the right to be informed
- the right to restrict processing
- the right to data portability
- the right to object
- the right not to be subject to automated decision-making including
The right to have data erasure is especially interesting. It is also known as “the right to be forgotten.” Organizations have one month from the time of a verbal or written request to respond to the right to be forgotten.
Organizations may also need to put steps in place to verify the age of children and obtain parental consent to stay GDPR compliant. This is especially true of social media channels.