What is GDPR? It is Compulsary for All Websites

(Tech info) #1

Hai Shouters so many discussing about GDPR. Please tel me about this if any one know clearly. And last date to add GDPR to our websitesd 25th May 2018

(kelvin) #2

Is all about site user protection and content protection, if you Don’t already have a privacy policy page for your site, is time to add one

Ta da

(Sahil Sharma) #3

#GDPR is coming and is going to be effective from 25.
I am short at time but still I am writing some points quickly which every Blogger need to follow:-

#Edit the privacy policy available at your site and in it add about every way you store or record data. #Mention about Google analytics in it. #Talk about cookies in it

#If you have an Email list which includes people from EU message them once and ask them that did they want to remain in your email list or not. If you do not get response from some guys about being a part of your list you should remove them from your #email list

#If you collect any other data like mobile number etc ( for making whatsapp group ) and all make a note about it in privacy policy.

#Open google analytics and set your data retention settings there.

#If you do not get much visitors from EU and EU traffic does not matters to you ( Like it does not matters to most of Indian pak regional sites ) then you should block your site in EU :slight_smile:

This is because GDPR is for people living in EU. So when site will not be accessible there you will not face any problem.

Source: Copied from my Facebook group

(Amit Tiwari) #4

Facebook group Link Please ?

(Sahil Sharma) #5

(Ramesh Patel) #6

thanks for the Facebook link Sahil.

(FforFree) #7

In 2016 European Commission approved a new General Data Protection Regulation (GDPR). In short, GDPR states that if a website collects or stores data related to an EU citizen, you must comply with the following:

  1. Tell the user who you are, why you collect the data, and how long it will be stored.
  2. Get clear consent before collecting any data
  3. Let users access/delete their data
  4. Let users know if data breaches occur

This infographic from the European Commission is a great summary http://ec.europa.eu/justice/smedataprotect/index_en.htm

GDPR comes into effect across the European Union on 25th May 2018. GDPR adds some new requirements regarding how websites (and therefore blogs) should protect individuals’ data.

Under GDPR, personal data is any information relating to an “identifiable person”. Identifiable information includes such things as a name, ID number, location, ethnicity or political standing. Data doesn’t have to be confidential or sensitive to qualify as “personal”.

When looking at most normal blogs, personal data will include:

  • Blog post comments data (name, email, IP)
  • Traffic stats plugins/tools such as Google Analytics
  • 3rd party hosted services such as Jetpack, Bloglovin’ and Disqus
  • Email signup forms such as Mailchimp or FeedBurner
  • Contact forms
  • Issues relating to the location of your web host. E.g. data is transferred to servers outside the EU

The good news here is that WordPress is working on updates to help make your site GDPR compliant behind the scenes (example here). We’re assuming that Google is also working on similar updates for Blogger/Blogspot too. This will go a long way in making the core of your site compliant with GDPR.

GDPR shouldn’t be a chore for most bloggers and digital influencers. It’s really about three key things:

  • Treat data with respect. Only collect what you need, and ensure it’s accurate, and that your data storage and processing is secure.
  • Make sure your privacy policy tells people what data you hold about them, how you use it, and how they can ask you to share this with them. Make it easy for them to request that it’s amended or deleted.
  • Review your IT arrangements so that you know all your computer systems are secure, including checking on any third-party services you use to store or process personal data

If you are in any doubt about whether it all applies to you, then ICO has a self assessment tool that you can take to see if you need to register with them. https://ico.org.uk/for-organisations/register/self-assessment/