• MarTech Today
  • Sections
    • Ads
    • Marketing
    • Content
    • Sales
    • Analytics
    • Management
    • Resources
    • More
    • Home
  • MarTech Today
  • Ads
  • Marketing
  • Content
  • Sales
  • Analytics
  • Mgmt
  • Resources
  • More
  • Events
  • SUBSCRIBE

MarTech Today

MarTech Today
  • Ads
  • Marketing
  • Content
  • Sales
  • Analytics
  • Management
  • Resources
  • More
  • Events
  • Newsletters
  • Home
Martech: Analytics & Data

9 steps you can take now to get prepared for GDPR

There are still things you can do before the May 25 deadline to be more prepared for the European legislation.

Robin Kurzer on April 4, 2018 at 12:55 pm
  • More

If you are a US business that just started thinking about how to prepare for the General Data Protection Regulation (GDPR), time is running out.

When the sweeping European Union (EU) legislation goes into effect on May 25, entities that process the data of European citizens are subject to a slew of new rules, which include enhanced data subject rights, guidelines for handling data, simplified and strengthened consent, mandatory breach notifications and increased protections for children.

Organizations in breach of GDPR can be fined up to 4 percent of their annual global turnover or €20 million (whichever is greater).

In order to be fully compliant, you’ll need to spend some time and money, but there are some things you can get started on right away.

  1. Determine if the GDPR applies to you. The short answer is that it probably does. Most large companies are bound to have some European customers. It gets trickier for smaller businesses and enterprises, and misconceptions abound, but any business that has even one European citizen, regardless of where they reside, in its database is expected to comply.
  2. Audit your processes and be able to map the location of all the personal data you’ve collected. Ask these key questions: What kind of user information are you collecting and how are you storing it? Are you able to easily pull up a data subject’s record on request? Delete it on request? Are you asking for consent for using data? Are you keeping a record of that consent? GDPR compliance requires that you do all of the above, and more. Get a baseline view of your operations so you know where you’re starting.
  3. Position your company as privacy-forward. Even if you are adopting a wait-and-see approach to GDPR enforcement, it’s just good business sense to make an effort to comply. Many brand experts believe that GDPR will usher in a badly needed attitude shift in marketing and that it will eventually benefit your bottom line to be seen in compliance with GDPR and other privacy laws. Simple efforts like publishing white papers or participating on panels about privacy subjects can bolster your brand and signal to your customers that you are serious about protecting their data.
  4. Hire a data protection officer.  This relatively new personnel role is tasked with much of the heavy lifting in terms of making sure an entity is compliant. Companies in EU member states are required to have one. The International Association of Privacy Professionals (IAPP) has estimated that as many as 75,000 DPO positions will be required across the globe. If your company is too small to justify the cost, consider contracting someone with a legal and security background to advise you.
  5. Look at your partners. Under GDPR, you are liable for third-party processor breaches. So be ultra-aware of your partners’ histories with data and privacy. Look for vendors that proactively promote their privacy initiatives.
  6. Keep an eye on your competitors — and enemies. Investigations into GDPR breaches and enforcement against entities will likely be triggered by reports of noncompliance. This process could leave you vulnerable to malicious reports from underhanded competitors. Your best defense is to be aware and prepared. Concentrate on making sure your own house is in order, but be sure to be aware of what the “other guy” is doing, too.
  7. Invest in compliance tools. Tools that help businesses comply with GDPR are released every day, and we expect the pace to pick up even more. There are tools for just about each tenet of GDPR, including ones that facilitate packaging up personal data in response to user requests and ones that aid in record keeping.
  8. Get certified. If you regularly conduct transatlantic transfers with businesses in the EU, you are likely already certified with Privacy Shield, which replaced the less restrictive Safe Harbor agreement in 2016. US companies that self-certify are essentially making a promise that they will follow EU data privacy laws while receiving EU data.
  9. Don’t panic. Yet. There’s still a lot of confusion over how the rules will be applied and enforced here, and regulatory agencies such as the FTC haven’t yet announced any processes and procedures. It’s likely that until a “big fish” is found to be out of compliance, we won’t know how it will play out. Do your best to show that you are trying to be in compliance.

Stay in the know as we get closer to the GDPR deadline: Follow all of our GDPR-related news coverage here.



About The Author

Robin Kurzer
Robin Kurzer started her career as a daily newspaper reporter in Milford, Connecticut. She then made her mark on the advertising and marketing world in Chicago at agencies such as Tribal DDB and Razorfish, creating award-winning work for many major brands. For the past seven years, she’s worked as a freelance writer and communications professional across a variety of business sectors.

Related Topics

AnalyticsChannel: Martech: Analytics & DataDMP: Data Management PlatformsGeneral Data Protection Regulation (GDPR)Marketing Tools: Analytics

Subscribe to receive daily martech news and expert insights. See terms.


We're listening.

Have something to say about this article? Share it with us on Facebook and Twitter.

Get the daily newsletter digital marketers rely on.
See terms.

ATTEND OUR EVENTS

MarTech 2021: March 16-17

MarTech 2021: Sept. 14-15

MarTech 2020: Watch On-Demand

×

Attend MarTech - Click Here


Learn More About Our MarTech Events

White Papers

  • The Six Principles of Building a Memorable Customer Experience
  • 5 Reasons Agencies Adopt Marketing Automation
  • How to Land Higher-Paying Clients: A 7-Step Framework to Grow Your Agency
  • B2B Marketing Trends Shaping 2021
  • State of Email Marketing 2021 Report
See More Whitepapers

Webinars

  • Crawl Your Way Towards Better Search Results With Dynamic Rendering
  • The AI Revolution Is Coming to Every Stage of Your Buyer’s Journey
  • The Fundamentals of Link Building for E-Commerce & Affiliate Sites in 2021
See More Webinars

Research Reports

  • Local Marketing Solutions for Multi-Location Businesses
  • Enterprise Digital Asset Management Platforms
  • Identity Resolution Platforms
  • Customer Data Platforms
  • B2B Marketing Automation Platforms
  • Call Analytics Platforms
See More Research

Register For MarTech - Free

Receive daily martech news and analysis.

Channels

  • Advertising
  • Marketing
  • Content
  • Social
  • Commerce
  • Sales
  • Analytics
  • Management
  • Home

Our Events

  • MarTech
  • SMX

Resources

  • White Papers
  • Research
  • Webinars

About

  • About Us
  • Contact
  • Privacy
  • Marketing Opportunities
  • Staff

Follow Us

  • Facebook
  • Twitter
  • LinkedIn
  • Newsletters
  • RSS

© 2021 Third Door Media, Inc. All rights reserved.