How does RGPD affect a business-customer relationship?

How does RGPD affect a business-customer relationship?

GDPR came into force in May 2018 and, after a troubled period of adaptation, companies are calmer and apparently better prepared to comply with the new legislation. However, there are still some doubts as to the actual changes that the GDPR will bring to companies. In today’s article, we explain how GDPR affects the relationship between companies and customers!

All companies are covered by GDPR

It doesn’t matter the size of the company or the area of ​​activity. All companies that process personal data for purposes other than billing (including marketing) are covered by the General Data Protection Regulation.

Personal data: What should be processed under the GDPR?

According to the law, personal data are considered as any information relating to an individual person identified or identifiable by such data (identifiable ‘by reference to an identification number or one or more specific elements of his/her physical, physiological, psychic identity, economic, cultural or social ‘). All data that has these characteristics must be kept securely so that there is no risk of loss or leakage.

Privacy Policy

The data privacy policy must be updated in accordance with the new requirements of the legislation. A rating and processing scale for personal data should be defined. The company’s legal department should be involved in this process and this policy should include all information related to the actual processing of the data, including its purpose. The privacy policy must be in an accessible place on websites for users to review.

Email Marketing Campaign Changes

Much has been said about the end of email marketing campaigns due to the legislation, but despite the new law significantly altering email marketing, it will still be possible to communicate through this medium. To do this, simply apply some measures:

• Perform an audit of the current database: It is important to know where the database contacts are located geographically and to provide evidence of consent provided by the contacts.
• Know where the contact came from: You need to know how that contact came to the company and you need to know if the data is up to date.
• Privacy Policy: A privacy policy is required that reports in detail how data are collected, processed and for what purpose it is stored in the company’s database.

GDPR brings a lot of changes to companies and it is very important for them to be informed about everything that will change. Does it comply with the New General Data Protection Regulation?