Heard of GDPR but don’t know what to do? Firstly – Don’t Panic! Ignore the scare stories of expensive fines and companies going out of business and remember this regulation was put in place to protect everyone’s data and keep all of us safe – including you.
Below are some of the most commonly asked GDPR questions to show what you need to do before 25th May 2018 and beyond.
A. GDPR stands for General Data Protection Regulation and it is actually just a new piece of EU law monitored by ICO (Information Commissioner’s Office). It is due to come into effect on 25th May 2018. The ICO have produced this simple leaflet on Preparing for GDPR which is a good place to start reading what what you might need to do.
A. You may have read that you need to employ a Data Control Officer or become a Data Processor yourself. This isn’t necessary if you only process personal data for “core business purposes of staff administration, marketing, PR and administration”. You can take this quiz to find out if this applies to you.
A. If your subscribers opted into your mailing list and they can easily unsubscribe then no, you definitely don’t.
A. Put simply, these are reasons why you hold someone’s data. The full list of ‘Lawful Basis for Processing’ reasons can be found here. Do you have a ‘legitimate interest’ in having someone’s contact details? If someone has opted into your mailing list so they want to hear from you then you have a valid reason to keep them. If the contact is a regular PR person you talk to for work then you have a legitimate interest. However if you found someone’s email address on a website and added it to your mailing list this is not a valid reason to have their details. You also need to think about how long it is reasonable to keep your contact data for and delete any contact data you no longer need.
A. Many vloggers and bloggers are worried that their work will become more scarce with the introduction of GDPR. PR agencies will need to comply with GDPR too but as long as they have your consent or a legitimate interest for retaining your email address then you should keep on hearing from them. If you haven’t heard from someone for a while then you can always get in touch and ask to get their emails again. It will probably take a while for things to settle down and some companies could be a bit overcautious with deleting data
A. Yes you do – but this is a good thing. GDPR is all about protecting the rights of the individual. If someone asks you what info you hold then you must tell them within 30 days. This means you need to think about how they can ask you and know where your information is all held. Remember though you can also ask the same of any other company so you are more protected too.
A. GDPR requires that we all think about our data but where we store it is still ultimately up to us. The most important thing is that it is safe and secure. For example:
We hoped that has helped answer your questions about GDPR. If you want compare notes and find out what they are doing in preparation, do pop over to our Friendship Bench to chat to other vloggers. You can read more about GDPR on the ICO’s website.
Add your YouTube Channel to the Channel Mum Website
How to Vlog
Vloggers and Channel Mum