Left it a bit late?
Better late than never. But you should take action now, before doing anything else.
Bit bamboozled about where to start? Here’s a handy checklist.
It doesn’t cover everything, but is a practical starting point.
The points here apply mostly to your website, and particularly how you ask for consent. For deeper reading, check out our Nettl GDPR Guide, which has links to extended resources at the back.
You need to use clear, plain language that is easy to understand.
Do you have an SSL certificate? Keeping user data secure is no-brainer.
Do you ask for explicit opt in (no pre-ticked boxes or any other type of default consent).
Do you record when they gave you permission? You need to log exactly what they were shown when they opted in.
Do you make it easy for them to opt out? Once they do, can you ensure nothing else is sent?