You’re probably already aware that the General Data Protection Regulation (GDPR) will come into effect on the 25th May. Especially after receiving multiple messages from companies, asking for consent to continue to hold your information, just so they can still send you those great pizza deals – or perhaps that’s just us…
Anyway, consent will be the key consideration, and the changes will have a big effect on websites. Everything from your website design, to how the site integrates with your other digital activity – such as social media, email marketing and e-commerce activities, will feel the impact.
When it comes to web development and building a new website, we understand how scary some of this sounds. Especially when you read about the potential consequences of non-compliance, like €20 million in fines, or 4% of your annual turnover.
The important thing is not to worry.
We’ve got the experience to know that healthy data protection practice is as much about the web development side, as it is about the business side of any site. And that developers play a huge role in making sure compliance is met.
I already have a website, how will I be affected?
Basically, if you already have a website that collects any personal data, which is then stored on a database – then you’ll be classed as a ‘Data Controller.’ Sounds like something out of a Sci-F movie, but this applies no matter what tools are used to collect, store and process any personal data.
You’re not alone, any websites will fall under scrutiny in regards to the way consent to retrieve any sensitive data is obtained, how easy the data is to access for an individual, and any security that’s built into the site to protect it.
No matter if your site is over 3 years old or is still being developed, amendments will probably need to be made to ensure any new GDPR requirements are met.
Making sure a new website is complaint
Remember those little annoying pre-filled tick boxes? Well they will no longer be accepted when it comes to consent. Websites will have to gain clear, explicit consent when requesting people’s personal data.
Many older websites were built with a variety of third party plugins, and many of them will likely be non-compliant. Meaning any websites being developed, will need to ensure any plugins are fully reputable, and able to be updated when necessary.
A new site will need to ensure people have unrestricted, easy access to their personal data, so they can delete or review it whenever necessary. Strong encryption will also become essential, to avoid the risk of non-compliance, especially if the site has any sales or contact forms.
Sound complicated? Don’t panic, we can help
So, whether your legacy site needs an overhaul, or you’re in the process of building a new website, then seeking help from specialist developers can ensure your site meets the correct compliance requirements, in time for the changes.
We can make the whole process a whole lot easier for you, and we know all about the security and compliance requirements for any new sites – and how the GDPR will affect overall web development.