4. DISCLAIMER:
We are not lawyers. This is informational only and
NOT legal advice. We recommend you contact
your legal representative before taking action to
ensure GDPR compliance.
10. Data given, rather than
gathered unwillingly,
is simply more valuable
as a marketing asset.”
Robert Rose
@Robert_Rose
“
GDPR: The Biggest Gift to Content Marketers in a Decade
SOURCE: https://contentmarketinginstitute.com/2018/06/gdpr-content-marketers/
HEATHER’S BIO: Heather Meza LOVES marketing. She’s been balancing the art and science of marketing for over 25 years, working with companies like Cisco, IBM, Content Marketing Institute, and now she leads the marketing team for Crawford Group. Known for her energy and enthusiasm, Heather is an experienced trainer and public speaker who is passionate about helping and motivating her fellow marketers.
Agenda
Quote
Change photo: Selct photo and delete. Drag new photo into picture box and Send To Back
Section Divider
Reposition the Title as appropriate to the image layout
Change photo: Selct photo and delete. Drag new photo into picture box and Send To Back
For event marketers, GDPR means new procedures must be put in place in order to do business in Europe. While this presents challenges, ultimately it can actually improve how you promote events and communicate with prospects and customers. On the downside, requiring more proactive consent to market to individuals means you’re certain to see a decrease in the number of people you’re allowed to contact. On the upside, the people who give you their active consent are going to be much more qualified leads. Ultimately, the goal of GDPR is to protect the rights of individuals. By respecting these rights, your organization has an opportunity to create more meaningful and trusting relationships with your audience in the future.
While these new regulations were written specifically for countries in the European Union (EU) and European Economic Area (EEA), they have serious implications for American event marketers who do any sort of business with people in Europe
When referring to data, the regulation is quite broad and covers any information that could identify a specific individual. This includes not only their names and email addresses, but also location information and online identifiers such as coo
The consequences for not being in compliance for GDPR vary from mild to grave, including potentially massive financial penalties. The European authorities review potential violations of GDPR based on 10 different criteria. These are designed to determine whether a business has willfully defied the regulation, or has just made a mistake either by accident or oversite. They’re also designed to measure how heavy a penalty to place on your business.
If you’re a first-time violator, or if your violation is determined to be unintentional, it’s possible you’ll be given an official warning or reprimand. But if you’re a repeat violator or found to be uncooperative, the next level of penalties can be severe. For starters, you could face a complete suspension of your ability to process any data within the EU. The effect of which means you’re essentially banned from doing business in the 29 European countries covered under GDPR. After that, the penalties get even more harsh. For what the authorities consider lower level infringements, you could face fines of up to €10 million, or 2% of your company’s entire annual revenue for the previous year—whichever of those two numbers is higher. Get busted as an upper level offender and the fine increases to €20 million, or 4% of your entire global revenue (again, they pick the higher number for the sanction).
Simply put, if you’re not serious about following the rules laid out in GDPR, you can be assured that the European authority definitely is. Unless you feel comfortable suspending all of your business in Europe or paying out €20 million, you need to get serious about compliance.
“data erasure”
Big Statement
Change photo: Selct photo and delete. Drag new photo into picture box and Send To Back
DATA INTEGRITY & SECURITY --- demonstrate that you have controls in place for keeping information secure. IF there is a breach, have to report & fix in 3-biz days. Appoint someone (anyone) who can be called about GDPR as the Data Protection Officer.
Marketing software provider, HubSpot say "The GDPR is silent on whether this form of consent is required, and unless guidance to the contrary is issued by the EU or our supervisory authority, our view is that this is not mandatory under the GDPR".
Anonymization is the encryption or removal of identifiable information so that it can never be tied back to a user. Pseudonymization is somewhere between identified and anonymous. With pseudonymization, the data components are anonymized and separated but can be put back together. For example, a system might assign a user one identifier for location and another for browser that can only be tied back to the user if it is put together with their date of birth, which is kept separately. The regulation promotes pseudonymization over anonymization.
• Ensure all your different prospect and customer databases have consistent communications preferences fields that are synced daily