GDPR and what it means for your Websites and Forms

Blog

GDPR and what it means for your Websites and Forms

GDPR and what it means for your Websites and Forms

Posted on Wednesday 6th December 2017

  • GDPR

All the information you need about the General Data Protection Regulation (GDPR), that comes into affect on 25th May 2018.

What If Solutions can help you make your website, form submissions and storage comply with the GDPR, here are the key area's we can help with:
 

  1. Privacy Policy Page and Text
    We can provide you with generic Privacy Policy statements that cover how your website uses forms, where the data is stored, how it is used, how the data is organised and made accessible, how users can request to view the personal data you hold on them and how they can request its removal. You can use these statements to add to your privacy policy. You may need to expand upon these statements to include any internal systems (such as CRM, Marketing and Accounts systems) that you use, that may also store the personal data submitted via a contact form. If you are unsure of what your privacy policy should include, we recommend speaking to a lawyer or someone who can provide you with legal advice.
     

  2. Check your Website and Contact Forms
    We can check whether or not you have forms that need to be updated to comply with the GDPR.
     

  3. Update your Forms
    We can update your contact forms to request consent and make them comply with the GDPR.
     

  4. Update the Send Process of your Forms 
    We can update the send processes of your contact forms to ensure the data is sent and stored to the minimum number of places.
     

  5. Organise your Forms and make them Accessible
    We can provide you with a facility within your admin area to search, export and delete users personal data as required.
     

  6. Allow your Website Visitors to Request to View or Delete the data you hold on them.
    We can provide you with a facility to allow users to submit a request to view or delete data you hold on them.   
    ‚Äč

Making your contact from(s) comply with the GDPR will incur a charge, we have designed a GDPR Compliance Package that will keep the pricing straightforward and costs as low as possible.

We will shortly be making contact with you to confirm the exact costs for making these updates, we will check your website(s) on a case-by-case basis, this will dictate the cost depending on the number of contact forms and their complexity. In the meantime, please take the time to read the information below. If you have any questions or queries, do not hesitate to contact us.

 

Do you have to comply with the GDPR?

Check the GDPR guidelines for Explicit Consent Requirement for Data Collection affects your forms

 

Not all forms are going to be impacted by the GDPR. If your form is anonymous and does not collect personally identifiable information on users, your form is not impacted.

If your form collects names, email addresses, phone numbers, addresses etc. the GDPR affects that form. If you are using any email marketing, CRM's or any other system to pass information submitted from a form, it is affected. Any forms dealing with commerce of any type; shopping carts, order forms, payment gateways, it is affected. The short of it is, any personally identifiable information being collected via your website(s), the GDPR compliance becomes important.

You have until 25 May 2018 to become compliant with the GDPR, at which time those organisations that are in non-compliance will face heavy fines.

We cannot force you to make the changes to your website and forms, it is ultimately your responsibility. We can only advise you on what needs to be done and provide you with a way of making your website(s) and form processes comply with the GDPR.

If you chose not to go ahead with the changes, please can you let us know, this will stop us sending follow up emails or contacting you by phone. If you do not give us the go-ahead for the updates, we will also accept this as confirmation that you do not wish to proceed.

Not proceeding with these updates will still mean updates will be made to your forms, with no charge to you. These updates will not make your website and forms comply with the GDPR, the updates will be to stop your contact forms from being submitted to our backup mailboxes and backup database.

We are classed as data processors when it comes to the processing of your forms, as such, we have an obligation to ensure that we conform to the GDPR.

 

Information on the GDPR - what is it and how may it affect you

Please see the following links for information about the GDPR:

https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr
https://www.eugdpr.org/
https://www.itgovernance.eu/blog/en/how-to-create-gdpr-compliant-consent-forms/


Next Steps

Making your website and its forms compliant is fortunately not too onerous, read our blog - Does your website and it's forms comply with the GDPR.