GDPR

“My site doesn’t collect personal data.”

Simply by having a website it is almost guaranteed you are collecting data. The EU has substantially expanded the definition of personal data under the GDPR: online identifiers such as IP addresses now qualify as personal data. Pseudonymised personal data may also be subject to GDPR rules, depending on how easy or hard it is to identify whose data it is.

  • Your website will most likely use cookies in order to enhance your users experience on your site. Cookies carry a modest amount of data which can include usernames and/or IP addresses. GDPR classes this information as “personal data” and as such you will need to comply with the new regulations.
  • If you have a mailing list or a newsletter, this will also hold personal information. If you use a service such as MailChimp or Campaign Monitor and people sign up via your website, you are taking personal data and passing it on to a third party.
  • Google Analytics may be installed on your website, in which case you are collecting data.
  • If you operate an eCommerce website then you are collecting user data required to complete your orders.
  • If you have any contact forms on your website, your user is giving you their data whenever they use those forms.
Both data controllers and data processors must make clear how they collect people’s information, what purposes they use it for, and the ways in which they process the data. The legislation also says that firms must use plain language to convey these things clearly and coherently to people: it’s time to wave goodbye to those confusing, dense privacy policies.

“What does this mean for me?”

  • As a website owner it is your responsibility to stay within the law. You need to revisit your Privacy Policy to make sure it is compliant, comprehensive, and relevant to your business. Using a template and hoping it covers you is no longer enough.
  • You need a to present a cookie policy to your user. Cookie law requires presentation of a banner on the first page the user visits on your site – it is important to note this may not always be your home page.
  • You must ensure any contact forms, signup forms or any other area on your site in which your user inputs their data carries a checkbox where they give you consent to use their data. This box cannot be pre-checked.
  • You need to have adequate security on your website to prevent any breaches. Failure to do so would be a violation of GDPR.

Here’s how we can help you:

At Redfoot Works we want to ensure our clients don’t get caught out by these complex new regulations. Our GDPR service ensures your Privacy Policy and Cookie Consent are always up to date and compliant with the law. Here’s how it works:
We enlist the services of an external group of lawyers, designers and developers that create legal documents for websites. Once these have been generated specifically for your website they are hosted on an external server and embedded into your site. The legal text is then automatically updated when the law changes and as such the information stays relevant – you never have to periodically call your lawyer to do this for you. This service also includes a cookie consent policy based on the contents of your privacy policy, and also the legally required banner every user needs to be presented with when they land on your site.
Once we’ve set the system up on your site you will benefit from a privacy policy compiled to suit all aspects relevant to your business, a cookie consent banner presented to your users that adheres to the legal requirement of appearing on the first page they visit (this may not be your home page), and a cookie consent document that is generated based on your new privacy policy.

The Redfoot Works GDPR service is £8 a month. This fee allows for continual revisions to each section of the privacy policy ensuring it is always kept up to date should the law change. Should there be any changes in the law, you will not be charged for any work required to update your policies – this will be done automatically and is included in the price. There is a one-off setup fee of £100 which covers the generation of your privacy policy, cookie policy, installation of the cookie consent banner, and an audit of your site to add any checkboxes the may be required to make your contact forms comply with the law.

GDPR

“My site doesn’t collect personal data.”

Simply by having a website it is almost guaranteed you are collecting data. The EU has substantially expanded the definition of personal data under the GDPR: online identifiers such as IP addresses now qualify as personal data. Pseudonymised personal data may also be subject to GDPR rules, depending on how easy or hard it is to identify whose data it is.

  • Your website will most likely use cookies in order to enhance your users experience on your site. Cookies carry a modest amount of data which can include usernames and/or IP addresses. GDPR classes this information as “personal data” and as such you will need to comply with the new regulations.
  • If you have a mailing list or a newsletter, this will also hold personal information. If you use a service such as MailChimp or Campaign Monitor and people sign up via your website, you are taking personal data and passing it on to a third party.
  • Google Analytics may be installed on your website, in which case you are collecting data.
  • If you operate an eCommerce website then you are collecting user data required to complete your orders.
  • If you have any contact forms on your website, your user is giving you their data whenever they use those forms.
Both data controllers and data processors must make clear how they collect people’s information, what purposes they use it for, and the ways in which they process the data. The legislation also says that firms must use plain language to convey these things clearly and coherently to people: it’s time to wave goodbye to those confusing, dense privacy policies.

“What does this mean for me?”

  • As a website owner it is your responsibility to stay within the law. You need to revisit your Privacy Policy to make sure it is compliant, comprehensive, and relevant to your business. Using a template and hoping it covers you is no longer enough.
  • You need a to present a cookie policy to your user. Cookie law requires presentation of a banner on the first page the user visits on your site – it is important to note this may not always be your home page.
  • You must ensure any contact forms, signup forms or any other area on your site in which your user inputs their data carries a checkbox where they give you consent to use their data. This box cannot be pre-checked.
  • You need to have adequate security on your website to prevent any breaches. Failure to do so would be a violation of GDPR.

Here’s how we can help you:

At Redfoot Works we want to ensure our clients don’t get caught out by these complex new regulations. Our GDPR service ensures your Privacy Policy and Cookie Consent are always up to date and compliant with the law. Here’s how it works:
We enlist the services of an external group of lawyers, designers and developers that create legal documents for websites. Once these have been generated specifically for your website they are hosted on an external server and embedded into your site. The legal text is then automatically updated when the law changes and as such the information stays relevant – you never have to periodically call your lawyer to do this for you. This service also includes a cookie consent policy based on the contents of your privacy policy, and also the legally required banner every user needs to be presented with when they land on your site.
Once we’ve set the system up on your site you will benefit from a privacy policy compiled to suit all aspects relevant to your business, a cookie consent banner presented to your users that adheres to the legal requirement of appearing on the first page they visit (this may not be your home page), and a cookie consent document that is generated based on your new privacy policy.
The Redfoot Works GDPR service is £8 a month. This fee allows for continual revisions to each section of the privacy policy ensuring it is always kept up to date should the law change. Should there be any changes in the law, you will not be charged for any work required to update your policies – this will be done automatically and is included in the price. There is a one-off setup fee of £100 which covers the generation of your privacy policy, cookie policy, installation of the cookie consent banner, and an audit of your site to add any checkboxes the may be required to make your contact forms comply with the law.

or send a quick message here:

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Got an idea you'd like to discuss, a project you need help with, or a business you want to get off the ground? Send an email to:

[email protected]

Terms & Conditions

Privacy Policy

Cookie Policy