GDPR, or the General Data Protection Regulation to give it it’s full title, is the new standard by which companies must hold and protect your data with. 

What is the General Data Protection Regulation (GDPR)?

The General Data Protection Regulation (GDPR) is a new legal framework that sets guidelines for the collection and processing of personal information of individuals within the EU. The GDPR sets out the principles for data management and the rights of the individual, while also imposing fines that can be revenue based.

The information on this page is for your informational purposes only and must not be considered as official legal advice. For specific information on the GDPR and its implications on your business/industry, we recommend having a conversation with your legal team/adivsor.

GDPR - The Main Points

Any data that you collect or have control over must pass the following tests, otherwise it must be deleted for your own protection

Accurate and up to date – You must maintain an accurate database and correct any inaccuracies as soon as possible

Hold the data lawfully, in a transparent manner and fairly – Put simply, you need to make sure people know you are holding their information and for what purpose you are holding it

Collect the data for legitimate purposes – When asking people to sign up / give you their data you must tell them why and how long you will reasonably hold it for

Process the data to ensure appropriate security of personal data – Any data you hold or collect must be held securely and safely, it is your responsibility to protect it

Only Relevant information – You shouldn’t collect information which has no purpose. For instance, you shouldn’t collect information about height, age religion, etc if it has no connection on your reasons for holding their data

Reasons for Processing Data

There are several reasons why you can hold and process data, including one or more for the following: –

  • Consent
  • Performance or consent
  • Legitimate interest
  • Preform a task in the public interest
  • Legal obligation
  •  Contractual
There are other reasons, if you are unsure, please consult your legal team

How can CRM software help you with GDPR

CRM is a vital business tool, even before GDPR came out on the 25th of May 2018. It is your central point of contact for all customer/contact interactions and where you would store their data and proof of how they came to be within your database. It allows you to store relevant information on your contacts and build a database that fits to your needs.

If you are planning on doing any form of bulk emailing, then any forms that are generated by the system will have an opt in process, helping you to comply with GDPR. It will also allow users to not only opt out of communications but to view the information that you hold on them, with the option to update where appropriate or even delete, as per “The right to be forgotten”

The system can also be setup to remind you when you need to either re-consent people or delete their records to to lack of interaction and engagement. Helping you to keep on track