Along with your other policies the best place to link to this policy is on the footer section of each page, it keeps it out of the way of your marketing message but clearly fulfils the required criteria of having it easily accessible.
Countdown To GDPR Compliance
- the identity and the contact details of the controller
- the contact details of the data protection officer
- the purposes and legal basis for the processing
- where the processing is based on legitimate interests, details of what these are
- the recipients or categories of recipients of the personal data
- details of any transfer to a third country and details of the safeguards and the means by which to obtain a copy of them or where they have been made available
- the retention periods or the criteria used to determine that period
- details on rights of access to and rectification/deletion of personal data. Rights to object to processing and the right to data portability
- if processing is based on consent, the right to withdraw consent
- the right to lodge a complaint with the supervisory authority
- details on whether the data subject is obliged to provide the personal data and the consequences of failure to provide it
- details of any automated decision making, including details of the logic used and potential consequences for the individual
As well as this Article 12 also outlines that information must be displayed in “a concise, transparent, intelligible and easily accessible form, using clear and plain language, in particular for any information addressed specifically to a child”. This not only affects the language which can be used, (no more legalese or technical jargon), it also affects the format of how the information is displayed.
You can find more information on GDPR by downloading the Rights of Individuals under the General Data Protection Regulation from the Irish Data Protection Commissioners website.
This has been the second of my Five Blog posts on actions you can take to at least show that a determined effort has been made to make your website GDPR compliant. As I publish the next three I will make them available below, so be sure to keep checking back to see them, or better still get links to them sent directly to your inbox by signing up to my mailing list.
If you have found this post useful and informative please free to share it with others so that they may get the benefit of it also. If you would like help to put your website on the path to GDPR compliance then please do not hesitate to get in touch, I would be more than happy to help you out.
- What GDPR Means For Website Owners
- GDPR What Are Cookies and Why Do I need a Cookie Notice On My Website
- Cookie Control – The Right to Choose
- Add A Consent Tick Box to Your Data Gathering Forms For GDPR Compliance
Disclaimer: GDPR is a serious topic and can have financial & legal ramifications for business owners that do not correctly comply. As I am not a legal professional I make no claim that this article or subsequent articles definitively covers everything that website owners should know, as such I would highly recommend that you do further research on the topic and seek legal advice should you deem it necessary. You should not rely on the contents of this article as legal proof of anything and I accept no responsibility or liability for its accuracy.