Starting on May 25, 2018 the European Union will Implement the new data privacy law, the General Data Protection Regulation (GDPR), the most important change in data privacy regulation in 20 years.
This means that EU-based organizations that holds data from citizens needs to be GDPR compliant. But very importantly, this GDPR also applies to anyone who is currently collecting and storing personal data from citizens of the EU.
So in today’s global world, and specially if you collect data from anyone on internet (i.e. anyone in the world can subscribe to your email list), you must comply with this law as well.
In any case you need to adapt your email list service and it doesn’t have to be complicated if you juts follow these steps:
Steps To Make Your Email List GDPR Compliant
STEP #1: Add a GDPR Consent Section on your Sign Up Forms.
The main aspect of the GDPR is that subscribers must explicitly accept being in your lists as well as the way they want to hear from you. This is the first step to collect consent from new contacts.
So this field must include a text explaining why you are collecting personal data, and the way they want to accept the Marketing Permissions, in other words how they want to hear from you (It can be email, direct mail, online advertising or any other that you might apply). Add a check box so the subscriber can give their consent about how to be contacted by you. Also a Legal Text explaining all about your treatment of the personal data as well as other practices (like cookie use of that data) and any other treatment, must be included.
Take a look at my own Sign up form and take it as an example: Sign Up Form Example
STEP #2: Segment your list by marketing permissions
You must create a segment for every and each marketing permission option you have included in the consent section of your form.
This is crucial to avoid reaching your subscribers in case they have not explicitly accepted. You have to make sure you send your campaign only to the people who have given consent.
STEP 3: Collect GDPR Consent from your existing contacts.
– THIS STEP SHOULD HAVE BEEN DONE BEFORE MAY 25, 2018 –
Now it is the turn to create a new campaign to specifically inform your existing contacts (those who signed up before the new GDPR was implemented), and also they must accept the GDPR terms giving you their consent to be in your list and being contacted, or the other option they have is unsubscribing from your list.
So this email must have a way your contacts either accept the GDPR rules, or unsubscribe from your list. After May 25, 2108 all the contacts who have not opted to receive any marketing from you, should be unsubscribed from your list.
After May 25 2018, communicate only with contacts who have expressly opted-in to your marketing permissions.
Contact you email list service for specific forms, templates and settings you must apply to your subscribers list to adapt your list to the GDPR.
Don’t forget to update all your automations to send emails only to those contacts under “Email Consent” segment.
Take a look at the complete information and resources of the official GDPR site: GDPR Official Site.
I hope this article can help you clarify some of your dounts about the GDPR compitaltion for your email list.
Please, subscribe to my blog HERE and leave your comments below!!!
Thanks for reading!!