GDPR
“My site doesn’t collect personal data.”
Simply by having a website it is almost guaranteed you are collecting data. The EU has substantially expanded the definition of personal data under the GDPR: online identifiers such as IP addresses now qualify as personal data. Pseudonymised personal data may also be subject to GDPR rules, depending on how easy or hard it is to identify whose data it is.
- Your website will most likely use cookies in order to enhance your users experience on your site. Cookies carry a modest amount of data which can include usernames and/or IP addresses. GDPR classes this information as “personal data” and as such you will need to comply with the new regulations.
- If you have a mailing list or a newsletter, this will also hold personal information. If you use a service such as MailChimp or Campaign Monitor and people sign up via your website, you are taking personal data and passing it on to a third party.
- Google Analytics may be installed on your website, in which case you are collecting data.
- If you operate an eCommerce website then you are collecting user data required to complete your orders.
- If you have any contact forms on your website, your user is giving you their data whenever they use those forms.
“What does this mean for me?”
- As a website owner it is your responsibility to stay within the law. You need to revisit your Privacy Policy to make sure it is compliant, comprehensive, and relevant to your business. Using a template and hoping it covers you is no longer enough.
- You need a to present a cookie policy to your user. Cookie law requires presentation of a banner on the first page the user visits on your site – it is important to note this may not always be your home page.
- You must ensure any contact forms, signup forms or any other area on your site in which your user inputs their data carries a checkbox where they give you consent to use their data. This box cannot be pre-checked.
- You need to have adequate security on your website to prevent any breaches. Failure to do so would be a violation of GDPR.
Here’s how we can help you:
We enlist the services of an external group of lawyers, designers and developers that create legal documents for websites. Once these have been generated specifically for your website they are hosted on an external server and embedded into your site. The legal text is then automatically updated when the law changes and as such the information stays relevant – you never have to periodically call your lawyer to do this for you. This service also includes a cookie consent policy based on the contents of your privacy policy, and also the legally required banner every user needs to be presented with when they land on your site.
The Redfoot Works GDPR service is £8 a month. This fee allows for continual revisions to each section of the privacy policy ensuring it is always kept up to date should the law change. Should there be any changes in the law, you will not be charged for any work required to update your policies – this will be done automatically and is included in the price. There is a one-off setup fee of £100 which covers the generation of your privacy policy, cookie policy, installation of the cookie consent banner, and an audit of your site to add any checkboxes the may be required to make your contact forms comply with the law.
GDPR
“My site doesn’t collect personal data.”
Simply by having a website it is almost guaranteed you are collecting data. The EU has substantially expanded the definition of personal data under the GDPR: online identifiers such as IP addresses now qualify as personal data. Pseudonymised personal data may also be subject to GDPR rules, depending on how easy or hard it is to identify whose data it is.
- Your website will most likely use cookies in order to enhance your users experience on your site. Cookies carry a modest amount of data which can include usernames and/or IP addresses. GDPR classes this information as “personal data” and as such you will need to comply with the new regulations.
- If you have a mailing list or a newsletter, this will also hold personal information. If you use a service such as MailChimp or Campaign Monitor and people sign up via your website, you are taking personal data and passing it on to a third party.
- Google Analytics may be installed on your website, in which case you are collecting data.
- If you operate an eCommerce website then you are collecting user data required to complete your orders.
- If you have any contact forms on your website, your user is giving you their data whenever they use those forms.
“What does this mean for me?”
- As a website owner it is your responsibility to stay within the law. You need to revisit your Privacy Policy to make sure it is compliant, comprehensive, and relevant to your business. Using a template and hoping it covers you is no longer enough.
- You need a to present a cookie policy to your user. Cookie law requires presentation of a banner on the first page the user visits on your site – it is important to note this may not always be your home page.
- You must ensure any contact forms, signup forms or any other area on your site in which your user inputs their data carries a checkbox where they give you consent to use their data. This box cannot be pre-checked.
- You need to have adequate security on your website to prevent any breaches. Failure to do so would be a violation of GDPR.
Here’s how we can help you:
We enlist the services of an external group of lawyers, designers and developers that create legal documents for websites. Once these have been generated specifically for your website they are hosted on an external server and embedded into your site. The legal text is then automatically updated when the law changes and as such the information stays relevant – you never have to periodically call your lawyer to do this for you. This service also includes a cookie consent policy based on the contents of your privacy policy, and also the legally required banner every user needs to be presented with when they land on your site.
or send a quick message here:
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Got an idea you'd like to discuss, a project you need help with, or a business you want to get off the ground? Send an email to:
[email protected]
Terms & Conditions
Privacy Policy
Cookie Policy