Personal SEO ~ Website Marketing and Content Writing: My 2 Cents About GDPR - All Those Privacy Polices You've Been Getting

My 2 Cents About GDPR - All Those Privacy Polices You've Been Getting

Okay, I know I'm late but I thought I would still put my 2 cents about this GDPR business. There have been a few posts on it, which are informative but now since I've received probably my 50th email about an update to someone's privacy policy, I thought I'd better say something. 

 

What is it?

 

European UnionGDPR stands for General Data Protection Regulation and is really just regulations for handling people's information and data online set forth by the European Union and only applies to European Union Citizens (Approximately 150 million people) World image in green

 

If anyone from those areas inputs data on your website, YOU ARE AFFECTED.

 

It was put into effect on May 25th, 2018.

 

Those people MUST know what's to be done with the data you've collected. 

 

If you're not in compliance you could face fines of up to 4% of your revenue.

 

I want this post to be clear and easy to understand so here's what you should do:

 

#1. Know what data you are collecting from people. (newsletter information, analytics, email, name, phone number, ANYTHING)

 

#2. Understand what happens to that data.

 

#3. Create a compliance plan.

 

You can only protect and control what you know about. Understand all the avenues someone could give you their information and any third parties collecting information as well including CRM systems, Email Drip Campaigns, IDX logins, etc... all data should be mapped out, classified and documented. Seems confusing? It doesn't have to be.  While I AM NOT A LAWYER and CANNOT GIVE LEGAL ADVICE, I can tell you some steps to take and what we did.

 

First off, look at one of those privacy policies you've probably received. Look over it and see how the "big guys" have written it because you know they've probably covered their butts well. Start writing one of your own or find a similar one, reword it in your own words, and make sure it covers these areas:

 

1.Obtain Consent

Your Terms of Service must be clear so that the reader knows they are giving consent and understands what you are doing with their content. BUT this does not mean a simple box to check; users need to accept your privacy policy and any changes, more than a simple checkbox.

 

2. Breach Notification

The user needs to know what you will do if ever their data is compromised. 

 

3. Right to Access

Users have the right to request their own data and to know what you're doing with it.

 

4. Right to be Forgotten

Users can request you delete their information at any time.

 

5. Data Ownership

Users have the right to their own data and can reuse it elsewhere

 

6. Privacy

Lock down your site as much as possible and tell people what you're doing with their data...all of it.

 

7. Prove it

Be ready to have reports on the data and what you have done with it.

 

If you're still stuck you can take a look at our website: https://www.personalseo.com. We've installed a widget on the top bar so that people can know and understand what we do with their data.

 

IF YOUR IDX SOLUTION COLLECTS DATA

 

Call them and ask how they are dealing with the GDPR compliance. If they don't know what you're talking about, talk to a superior. You AND them may be responsible. 

 

You or your webmaster can block users from those countries, BUT if someone from those countries were in the states and used your website, you would still be liable. That's a risky place to be. It's just best to comply.

Make it in plain English - "On this site I use ... (Google Analytics, IDX information, Forms, CRM, Newsletter software, etc..) And link to any additional GDPR compliancy such as analytics, forms, CRM, or newsletters and their websites if possible. Seriously, cover your butts EVERYWHERE.

 

"But I won't or don't sell anything to overseas buyers." - But you may not have any control over whether or not they put in their information for your data collection. This really doesn't solve the problem.

 

"I don't collect any data."  - How are you doing business again? Just kidding... if you never ask for any information and don't have a property search on your site, I would still add it under the privacy policy just be safe. But this means that you don't use any visitor tracking system, no Google Analytics, no contact forms, and no comments on blogs. Better safe than sorry.

 

"How do I know what to say?" - I would find a similar site and see what theirs is and as long as it covers the basis you can reword it into your own words or have a lawyer draw up one.

 

What if you don't comply?  Fines range from $23 million (yes, million) or 4% of your annual revenue, whichever is greater... NOT A GREAT PLACE TO BE. This is the max though and supervisory authorities will have the scope to impose fines at will or issue warnings, reprimands, order compliance with data subject requests and inform the user of any issues. I don't know about you but these really make me want to comply. 

 

GDPR Compliant

World image By S. Solberg J., CC BY 3.0, https://commons.wikimedia.org/w/index.php?curid=2142538

 

 

ActiveRain and SEOTammy Emineth is an expert in custom content and original articles for blogs, website, press releases and more. Contact me anytime and feel free to subscribe to this blog to stay up to date on my latest blogs and informative information. Email me or contact me for Real Estate Website Marketing and SEO Content Writing.

 Twitter Me  Blogspot Blog  Connect on Linkedin  Google Plus Find me on Facebook   Find cool stuff with me on Pinterest  Fun stuff on my tumblr page

The information contained in this blog is believed to be true and correct and while every effort is made to assure that the information is as accurate as possible, the author of this blog, and its comments disclaim any implied warranty or representation about it's accuracy for any particular purpose. All information is copy written and the property of Tammy Emineth.  

Comment balloon 15 commentsTammy Emineth • June 12 2018 05:51PM

Comments

Tammy Emineth Better late then never - thanks for the info

Posted by Hannah Williams, Expertise NE Philadelphia & Bucks 215-953-8818 (Re/Max Eastern inc.) 6 months ago

Tammy really good and timely post - we all need to read this one and put a plan in place if there isn't one already.

Posted by Anna Banana Kruchten CRB, CRS 602-380-4886, Arizona's Top Banana! (Phoenix Property Shoppe) 6 months ago

Frankly I feel this whole thing is an unrealistic and unfair imposition on small companies.  For Google, Facebook, etc. with their casts of thousands and thousands to handle, no big deal.  For the mom and pop places?  Not so much.  I have not required registration on my IDX site to look.  Obviously if someone wants to save a search, they have to input information to create an account. 

I created a Policy page and added it to my site, blocked all of Europe (and Murphy's Law...the next weekend I got a call from a US citizen in the UK looking to return here...fortunately my blog posts don't collect data, etc., so they could see those and call me).

Posted by Liz and Bill Spear, RE/MAX Elite Warren County OH (Cincinnati/Dayton) (RE/MAX Elite 513.520.5305 www.LizTour.com) 6 months ago

Good evening Tammy Emineth,

Excellent post and so glad to see it featured! Thank you for a clear, concise outline of the whole issue.

Posted by Dorie Dillard CRS GRI ABR, Serving Buyers & Sellers in NW Austin Real Estate (Coldwell Banker United Realtors® ~ 512.346.1799) 6 months ago

You provide some great tips here Tammy Emineth - congratulations on the Gold Star Feature Post. 

Posted by Kathleen Daniels, San Jose Homes for Sale-Probate & Trust Specialist (KD Realty - 408.972.1822) 6 months ago

Thank you for the simplistic message Tammy and congrats on being featured! I just took your advice and got the SSL certificate, thanks for that.

Posted by Wanda Kubat-Nerdin - Wanda Can!, So Utah Residential, Referral & Relocation REALTOR (Prado Real Estate South) 6 months ago

Thank you Tammy for this valuable information ... there is never a day that we are not learning something new.  I have to agree with Liz and Bill Spear ... as a small company this can get overwhelming.

Posted by Diana Dahlberg, Real Estate in Kenosha, WI since 1994 262-308-3563 (1 Month Realty) 6 months ago

Thanks for your wisdom and suggestions, Tammy.  I have a pretty good privacy policy in place already but made some modifications.

I have to agree with Liz and Bill Spear 

Jeff

Posted by Jeff Dowler, CRS, The Southern California Relocation Dude (Solutions Real Estate ) 6 months ago

Well, I must say you put together a very comprehensive analysis and I agree it pays to be safe rather than sorry. but, with that said, do you really think the EU is going to go after small mom-and-pop businesses to try to enforce this on sites that are in different countries out of the EU system?

I agree with Liz and Bill Spear. This is really meant for usage website based operations and it really wont make any common sense to go after small operators. Also, how would they be able to enforce any fines in countries outside of the EU?

I can't wait for some US-based major website organization to stand up to the EU on this matter!

As I recall in France they have a 35Hr. limitation on the number of hours that people can work.  France is in the EU, so what's to say that in a year or two they add this to their website privacy policy as well! are we just going to follow it like sheep or insist that our legislators step in with a declaration that the EU can do whatever they like, but the USA does not have to comply and does not have to abide unless the amount of trade with the EU is over some reasonable amount like $1 million per year or more.

So besides being scared into compliance why not shoot off a quick email to your congressperson and request that some bill is drawn up to solve this problem before the next crazy requirement is issued!

 

Posted by San Diego real estate blog San Diego real estate agent (brokerforyou.com CA Lic#00706331) 6 months ago

It's a lot to expect of small companies. And why doesn't the rest of the world also follow this lead and offer the same rights to all users?

Posted by Georgie Hunter R(S) 58089, Maui Real Estate sales and lifestyle info (Hawai'i Life Real Estate Brokers) 6 months ago

if you run a WordPress blog site is a very easy way to take care of this ...

GDPR for WP

Posted by Jared Schwartz, Real Estate Agent, Downtown San Diego real estate (Brokerforyou) 6 months ago

Tammy, thank you for explaining the way we can comply with this new regulation...

Posted by Monique Ting, Your agent under the sun (INET Realty Honolulu, HI) 6 months ago

I get a lot of traffic on my website from EU. I get a lot of requests to add to LinkdIn an am reluctant to accept.

Thanks for the information, I will have to talk with my web host to see how we can protect ourselves.

Posted by John Wiley, Lee County, FL Real Estate GRI, SRES,GREEN,PSA (Right Move Real Estate Group- EXP Realty) 6 months ago
cazadoras hombre españa belstaff outlet Los mejores productos de calidad,Y el precio más bajo en toda la red,Satisfacer los requisitos de compra!
Global leader of telecom cooling equipment and solution,Cabinet Air Conditioner,Heat Exchanger,Computer Room Air Conditioner

Chengdu HOP Technology Co., Ltd. is a leading manufacturer of Smart Energy Meter and energy management system (including communication products and system software). Since 2010 it established, HOP has been researching and producing high quality energy meter with smart metering solution for various application in industrial & commercial and residential areas.
Posted by cooler air, Global leader of telecom cooling equipment and sol (hop cooling) 6 months ago

Good morning Tammy - this was the reason we don't use paper referral slip in our BNI chapters.

Posted by Grant Schneider, Your Coach Helping You Create Successful Outcomes (Performance Development Strategies) 5 months ago

This blog does not allow anonymous comments