EU General Data Protection Regulation (GDPR)

The new EU General Data Protection Regulation (GDPR) rules that take effect on 25th May 2018 have implications for Australian businesses that have an establishment in the EU or offer goods and services or monitor the behaviour of individuals in the EU.

This new data protection regulation includes ensuring that your Privacy Policy, Disclaimer and Cookie notices on your website are GDPR compliant and that consent is authorised when processing, monitoring or collecting personal data for one or more specific purposes. This includes data collection from mediums such as website forms, signup or popup boxes, checkout pages and social media channels.

The Office of the Australian Information Commissioner has published a document in regards to your responsibilities, demonstrating compliance and having transparent information handling practises which goes into further detail - https://www.oaic.gov.au/privacy/guidance-and-advice/australian-entities-and-the-eu-general-data-protection-regulation/

This is a great time to update your website to ensure you are also compliant with Google Adwords (noting if you are using remarking services, cookies or ads), Google Analytics (confirming that you use this analytics technology) and Facebooks Terms of Service (when using their ‘common audience pixel’).

We recommend seeking legal advice in relation to the current mechanisms that are used on your website and media channels to collect and analyse data to ensure you are compliant. If you require assistance with site implementation, let us know how we can help.