GDPR stands for General Data Protection Regulation and is a European regulation meant to give consumers more control over their personal data. It became enforceable on May 25th, 2018.
All organisations ‘handling’ personal data of citizens or residents of the European Union (EU) have to comply with GDPR. Here are some examples:
- An e-mail address field on a contact form or checkout page.
- People can log in to your website. Even if it’s just in the back-end so all sites with a CMS like WordPress have to comply.
- Database with order information.
- Event sign-ups.
GDPR requires website and webshop owners to inform visitors:
- which personal data is being collected
- what the data is being used for
- who is handling the data
- how the data was obtained
- how and where the data is stored
For more in-depth information we recommend reading through whatisgdpr.eu or watching their 3-minute video below: