The document provides an overview of the General Data Protection Regulation (GDPR) that took effect on May 25, 2018, highlighting its impact on how companies handle EU citizens' personal data. It emphasizes the necessity for active consent from individuals for data processing, the need for clear privacy policies, and the potential fines for noncompliance. Organizations collecting customer data are advised to review their practices to ensure alignment with the new regulations.

1. GENERAL DATA PROTECTION REGULATION (GDPR) -
OVERVIEW & PREPARATION
Regulation in Effect May 25th, 2018

2. Joe DeMicco
Founder / CEO
AIMG.com
Email: jdemicco@aimg.com
Twitter: @demicco
LinkedIn: www.linkedin.com/in/joedemicco
Company: www.aimg.com

3. Housekeeping
Various Levels of Comfort / Experience
Touch on Generalities of GDPR
Discuss Preparation Tactics
Discuss Tracking and Reporting
Q&A

4. DISCLAIMER
This presentation offers insight into how
regulation may impact businesses and marketers.
This is an overview of interpretations and
recommendations based on research we’ve
undertaken but does not ensure full compliance.
We advise seeking legal advice and deeper individual research.

5. • Agreed upon by the European Parliament and Council in April 2016
• Replaces the data Protection Directive 95/46/ec
• Primary law regulating how companies protect EU citizens’ personal data
Companies are subject to new requirements taking full effect
May 25, 2018
GDPR - WHAT IS IT?
GENERAL DATA
PROTECTION
REGULATION

6. A series of changes to the way
data is captured, used and
managed for all individuals /
citizens of the European Union.
GDPR - WHAT IS IT?

7. The goal is to create a more
consistent protection of
consumer and personal data
across EU nations
Requiring the active consent of subjects
for data processing
Anonymizing collected data to protect
privacy
Data breach notification policy - timely
The safe handling of data transfer
Requiring certain companies appoint
Data Protection Officer
GDPR - WHAT IS IT?

8. GDPR FINES
Associated fines for noncompliance are up to €20 million
or 4% of your global turnover, whichever is greater

9. Although focusing on the protection of
citizens, broadly speaking this is a
worldwide regulation
Any organization that holds, collects and
uses customer data for their marketing or
business communication is recommended
to review their policies and processes and
ensure compliance
WHO IS AFFECTED?

10. When using cookies to track online activity
it is imperative to specifically outline your
privacy policy and their usage
RE-MARKETING

11. Forms should no longer include pre-ticked
checkboxes-this is considered implied consent
as opposed to “freely given”
Opportunity-create extremely valuable
content to your buyer personas
Tip-the “thank you” page is a
great place to gain consent
WEBSITE FORM SUBMISSION

12. If leveraging email addresses to
create list for social media
targeting it is recommended to
state in your posted policies
Offer ability to opt out
SOCIAL MEDIA ADVERTISING

13. A common practice to attempt to identify
website visitors is by leveraging IP tracking
If tracking IPs - state in your
privacy policy as IP addresses
are classified as “personal data”
IP TRACKING

14. GDPR states Privacy Policy information must be:
“Concise, transparent,
intelligible and easily
accessible; written in clear
and plain language,
particularly if addressed to
a child; and free of charge”
YOUR PRIVACY POLICY

15. Re-engagement email
How you obtain their personal details
Why you’re contacting them
What sort of content you intend to
send that in the future if they opt in
Their ability to update their
communication preference and
opt out
EMAIL MARKETING

16. Focus on value to your recipients
Offering something in return for
opting in a proved to be effective
Opting in via optional tick box
Consent must be positive not implied
EMAIL MARKETING

17. Q&AEmail: jdemicco@aimg.com
Twitter: @demicco
LinkedIn: www.linkedin.com/in/joedemicco
Company: www.aimg.com