Everything You Need To Know About The GDPR

What is GDPR?

The GDPR is a regulation that has been designed specifically to improve protections for people around the processing of their personal data.

Who does this affect?

Although your business may not be based in the EU, or specifically conduct business there, the effects of the GDPR are pretty wide reaching.

  • Google Analytics
  • Facebook Tracking Pixel
  • Googe AdWords Tracking
  • Email Marketing Software (such as Mailchimp, ActiveCampaign, Infusionsoft etc)
  • Online Booking Software (such as Acuity, Calendly)
  • Promote your business via online learning platforms (such as Thinkific, Teachable etc)
  • Storing customer information on Cloud Storage (such Google Drive, Dropbox)
  • Using cloud software for emails, data storage, client information
  • and the list goes on…

What are the GDPR changes?

There are changes in these main areas:


Businesses need to explain to their customers what they are doing with their information and how they are storing it and disposing of it.

Individual Rights

The new laws give greater personal rights to the customer.

Data Processing

The responsibilities of businesses who manage, process and store the data are laid out in the new laws. There must be documented contracts between these parties detailing how the data is going to be used.

What does your business need to do to comply?

If you think these changes might affect your business, there are a few simple things you can do to make sure that you comply.

What if you don’t comply?

There are administrative fines and penalties if your business is found to be non-compliant with the new regulations. The specific fine will depend on factors like the nature of your breach, your intent and the size of your company, plus your prior history in their area. At the lower end it is €10 million, so perhaps making sure your business is compliant might be the cheaper way to go.

Where to start

  1. Update your Privacy Policy.
  2. Ensure your privacy policy is visible and accessible from your website, online store, booking forms, business Facebook page, email marketing platform, learning platform (such as Thinkific)… basically anywhere you are conducting business activities online.
  3. Amend any opt-in or subscribe features to comply with GDPR changes.
  4. Ensure EU contacts and customers are aware of and agree to your Privacy Policy.
  5. Request EU contacts to re-confirm subscription to your business or marketing.
  6. Delete details of contacts and customers that do not provide consent.

Further reading and getting legal advice

Now obviously, this is our ‘nutshell’ overview of the changes, and by no means should be the legal advice on which you base what your own business does to comply.



Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Robyn Kyberd

Robyn Kyberd

Business Development & Optimisation Consultant with a serious soft spot for CX, Digital Marketing, SEO and Analytics. https://optimiseandgrowonline.com.au/