E: [email protected]
T: 01526 352919
EU's General Data Protection Regulation (GDPR) comes into effect on 25th May 2018 and will bring about the greatest change to European data security in over 20 years. Even if you’ve only been vaguely aware of this, being based in the USA, (or anywhere else outside the EU), you might think this does not affect you.This is simply NOT TRUE and the penalties for non compliance are extreme. Failure to comply with GDPR could lead to fines of up €20 million or 4% of the company’s total global revenue.
Any U.S. company that has a Website (and every business does!) and markets their products or services over the Web should be GDPR compliant.
Article 3 of the GDPR says that if you collect personal data or behavioral information from someone in an EU country, your company is subject to the requirements of the GDPR. Two points of clarification.1) The law only applies if the data subjects (as the GDPR refers to consumers), are in the EU when the data is collected. This makes sense: EU laws apply in the EU. For EU citizens outside the EU when the data is collected, the GDPR would not apply.
2) A financial transaction doesn’t have to have taken place in order for the extended scope of the law to kick in. If the organization just collects "personal data" - What you in the USA refer to as personally identifiable information (PII) - as part of a marketing survey, then the data would have to be protected GDPR-style. This includes anyone from the EU who completes an enquiry form on your website.In conclusion, we are only the messengers! We have no insight into how this will be enforced, but the penalties are extreme and our view is that it is better to be safe than sorry.
From 25th May 2018 your business needs to be GDPR compliant.
Read more at Forbes Magazine.
There are certain things that need to be done to your website to ensure you are GDPR compliant and we have a dedicated team ready to action it for you before 25th May 2018.
The cost of a Dedicated SSL Certificate (if you don’t already have one) is $95 USD per year, or a Shared SSL Certificate is only $35 USD per year. We also recommend CIVIC's Cookie Control at $59 USD per year. If you need our help to set this up and implement all/any of the necessary steps above on your behalf, there is a one-off charge of $150 USD to action it all for you.We can action everything for you but you need to let us know IMMEDIATELY, so we can ensure you are on our schedule to complete before GDPR-DAY, and if you host your own domain we will need your login details to make some changes to your DNS settings.