TwoSix Moments: The Breakdown on 5 Articles About GDPR

We read a bunch of articles about GDPR so you don’t have to. Let’s get started.

…Actually before we do that, let’s just be clear that we are not your lawyers, and this blog should not be considered as legal advice!

NOW let’s get started 😃

What Google’s GDPR Compliance Efforts Mean for Your Data: Two Urgent Actions

by Moz

What is GDPR?

  • “The tweet-length version is that the GDPR (General Data Protection Regulation) is new EU legislation covering data protection and privacy for EU citizens, and it applies to all companies offering goods or services to people in the EU.”

Data processor vs. Data controller

  • “When you deal directly with a person in the EU, and they give you personally identifiable information (PII) about themselves, you are typically in what is called the “data controller” role. The GDPR also identifies another role, which it calls “data processor,” which is any other company your company uses as a supplier and which handles that PII. When you use a product like Google Analytics on your website, Google is taking the role of data processor. While most of the restrictions of the GDPR apply to you as the controller, the processor must also comply, and it’s here that we see some potentially unintended (but possibly predictable) consequences of the legislation.”

Read the full article here.

What the GDPR Means to Social Media Marketers

by Buffer

Practices to be aware of/avoid:

  • Scraping personal data from people’s social media profiles to use for marketing purposes.
  • “If you are sending traffic from social media to your website and you’re using Google Analytics to track visitor behavior, you will likely need to get consent for that.”Your customers must be given a free and genuine choice to accept or reject (and be allowed to easily withdraw their consent).
  • State what type of data will be collected and how it will be used – and make sure this is displayed in clear and plain language.
  • Pre-checked boxes for consent are a no no.

Buffer also provided a list of GDPR resources for these channels:

Read the full article here.

GDPR website compliance checklist: Are you ready?

by Adotas

Here is a list of what is considered “personal data”:

  • First name, Email address, Address
  • IP Address, location data
  • Race, sexual orientation, religious and political belief

What are some ways you can be proactive about GDPR?:

  • Option to withdraw consent (opt-out) – Send an email to your subscribers, giving them the option to opt-out of receiving your newsletter, and having their information deleted
  • Make nothing by default – Essentially pre-checked email opt-in buttons are no longer considered ethical.
  • Make sure your website is SSL certified – You can tell if your website is SSL certified if you have an https address.
  • IP Address Tracking Message and Cookie Opt-In – If you are using tools such as Facebook Pixels, it’s now considered best to let your audience know. Furthermore, you can also consider allowing people to “opt-in” for cookie tracking.

Read the full article here.

Are hotel operators ready for GDPR?

by tnooz

Key quotes:

  • “Any company processing EU citizens’ data, whether it is in the EU or not, must comply with GDPR, or risk a fine of as much as 4% of their global turnover.”
  • “It boils down to better quality data. From May 25, organisations can only send communications to recipients who have explicitly opted in to receive them. Pretty soon, it will seem ridiculous to imagine that we ever sent messages to people who didn’t want to receive them.”
  • “Now hoteliers can’t simply incentivise a sign-up using an ancillary benefit; they must offer material worth signing up for. That is likely to place a high focus on content, bringing inspirational ideas and messages to customers’ inboxes, information that wants to see value from.”
  • “GDPR should be complied with, indeed, but May 25 is not a one-time deal. If operators are not compliant on day one, they should strive for compliance in the next few months. Data protection is a process, not an event.”

Read the full article here.


Take this quiz to see if you are knowledgeable about GDPR!

There you have it! Just to reiterate – GDPR technically only affects EU citizens and their data. However, many US marketers are viewing this as a predecessor to a native policy. It’s best to get on board with these guidelines now! Stay up to date with more digital marketing information by following us on Twitter.