What is the GDPR?
You might of heard about the General Data Protection Regulation (GDPR) if you are based in Europe or work with residents of countries that belong to the European Union.
GDPR is a set of regulations that are being introduced to the European Union with the purpose of protecting the online personal data of its citizens and residents. These rules were officially approved on April 27, 2016 and they will become official to enforce on May 25, 2018.
This piece of legislation introduces very important changes in the way online data privacy is regulated. It covers a variety of modern contexts, for example: notification requirements for data breaches, and transparency rules that alert users what personal data is collected and why.
In this post, we explain how GDPR could impact you as a FreeAgent CRM customer.
This post is intended a resource, but is not legal advice. We recommend that you research how GDPR will affect your business and make any changes required to become compliant.
Who does this affect?
GDPR affects EU-based businesses, as well as anyone processing the personal data of EU citizens – regardless of where it is established and regardless of where its processing activities take place. This means it could affect any business anywhere in the world. We encourage every business to determine whether or not you are processing the personal data of EU citizens.
By processing, we mean if you ever collect, record, store, use, or erase personal data from customers or contacts in the EU.
Personal data is a broad term indicating any information relating to an identified or identifiable individual; meaning, information that could be used, on its own or in conjunction with other data, to identify an individual, including location and behavioural data. This means that it almost certainly applies to any information about any contact you have in your FreeAgent CRM account that is an EU citizen.
How does the GDPR impact my FreeAgent CRM account?
It is required that any company that processes personal information must comply when EU residents enforce their right to request access to review their personal information. The rights also extend to correcting and/or deleting data as requested by the individual. You must ensure that you can accommodate these rights if you are processing the personal data of EU citizens.
As always, you are responsible for the data that you put into FreeAgent CRM.
Under GDPR, if requested, you’ll need to be able to prove that you acquired explicit, opt-in consent from each member of your database. FreeAgent CRM acts only as a processor for personal data, including but not limited to the following actions: Create, Download, Edit, Search, Delete.
At FreeAgent, we’ve reviewed our internal data processes to make sure we’re compliant with GDPR. We encourage you to learn more about GDPR and make any changes required to become compliant as well.
As a company, we align ourselves with the principles of GDPR to protect individuals and their personal information. We believe strongly in data privacy and security for our customers and for our customers’ customers. We are excited to continue to serve our FreeAgent customers in this mission with a CRM solution that secures all their customer information in one place.
This regulation will become effective on May 25th, 2018.
To learn more about GDPR, the links below are a great place to start: