News & Insights
5 Key GDPR Questions
01 March 2018
The EU Data Protection Regulation (gdpr) is replacing the Data Protection Act, reshaping the way organisations approach data privacy. It aims to give citizens back the control over their own personal data. The enforcement date is 25 May 2018 and those in non-compliance may face heavy fines. Marketing Week recently published an article on 'GDPR: Five questions marketers must answer before May'. These 5 questions can help towards your data privacy changes:
- Have you completed a data audit? – It is recommended you examine your data flows. This can be a real eye-opener for organisations, as they may find bits of data lying around that not everyone knows about.
- Is consent the right course? –You may decide to take different actions for different data categories. If your recent data fulfils the requirements of GDPR then re-permissioning shouldn’t be required. However if older data doesn’t have adequate permissions than you may need to refresh consent for this category.
- What are your ‘legitimate interests’? – The requirements of using legitimate interests are that you have a relationship with the consumer, and that they would reasonably expect you to carry out the specific kinds of data processing you are employing.
- How sensitive is your consumer profiling? –Legitimate Interests could also be used for profiling non- sensitive data. However if you are profiling sensitive data, such as household income received from a third party, you may need to ask for consent.