The newly approved EU General Data Protection Regulation comes in response to the increase in personal data breaches reported in the last few years. Any organisation handling EU residents’ personal data will need to comply with the new regulation by 2018 or face tough penalties of up to 4% of global annual turnover or €20 million, whichever is greater.
Organisations that use data as part of their sales and marketing activities will need to consider implementing processes and procedures in handling data to avoid the negative publicity and fines associated with non-compliance.
The Regulation could also represent a golden opportunity for marketers: by achieving GDPR compliance, companies will build trust and confidence among clients, and provide a greater degree of transparency in how their clients’ personal data is handled.
One of the main EU GDPR requirements marketers need to take into consideration relates to client consent. Marketers will be required to get “unambiguous” consent from clients before using their data for marketing purposes. This “unambiguous” consent signifies a slight relaxation of the responsibility and obligations implicit in the “explicit consent” proposed in previous drafts, but it still rests on a “clear affirmative act” from the clients.
Data subject rights
Another requirement marketers should not overlook is the “right to be forgotten”, which gives data subjects the right to have personal details erased from records. Furthermore, parental consent is required to process the data of children under 16.
Get the tools and knowledge you need
These are just a few of the requirements the Regulation imposes. To help you effectively implement the requirements, gain a competitive advantage, and instil trust and confidence in your clients, here are some of the tools and training opportunities marketers can take advantage of:
1. Certified EU GDPR Foundation training course
This comprehensive one-day training course will help you learn about the GDPR’s requirements, how it can affect your organisation, and how you can achieve full compliance with the Regulation. The training delivered by an experienced data protection consultant helps you demonstrate your competence with an EU GDPR Foundation (EU GDPR F) qualification, awarded by IBITGQ.
If you’re looking to gain detailed knowledge on the EU GDPR, check out our Certified EU General Data Protection Regulation Practitioner Training Course >>
2. EU GDPR Documentation toolkit
This documentation toolkit incorporates a full set of policies and procedures to enable your organisation to comply with the EU GDPR. The toolkit contains customisable templates, guidelines for mapping the flow of data across your organisation, data breach notification process and procedures, international data transfer procedures, and many more document templates and tools to help you achieve legal compliance.
3. Privacy Impact Assessment (PIA) training
For those interested in learning and expanding their knowledge beyond the basics of data protection, Privacy Impact Assessment training can provide the practical knowledge needed to perform a privacy impact assessment (PIA) and identify the most effective ways to fulfil your organisation’s data protection obligations. This course is particularly designed for delegates who already have background knowledge in data protection.