In recent months we’ve been talking to a lot of companies about the new GDPR passed in May.
What’s surprising is how many are saying that it’s either not something they are concerned about, or board level decision makers are failing to grasp the severity of the laws and as a result aren’t doing anything about it.
Considering the eye-watering fines, strict enforcement and huge scope, it’s a remarkable stance to take.
So if you’re concerned about the GDPR but need to convince your colleagues (or yourself) take a look at these objections and ensure your entire team gets on board.
“We’re an SME, we are not held to the same standards as Facebook or Google; that’s who the EU is really after”
It’s true that huge corporations will get fined more – 4% of Apple’s global turnover is about £7 billion, but all it takes is a single email to someone who hasn’t consented to your marketing and you’ll be in hot water with the ICO.
Even if this isn’t likely, is 4% of your organisation’s annual turnover a risk you want to take? Not to mention the hit your database will take when deadline day hits and you can no longer contact a single person on that list…
Taking simple steps to cover yourself such as asking for consent and storing proof of that consent could save you a whole load of problems further down the road. So why take the chance?
“We’re fine – we’re not in the personal data business. The GDPR only applies to businesses that collect personal data on a large scale”
What is personal data?
True, but unless you can be 100% sure that you don’t hold information on, or market to anyone who isn’t an existing client, then it will definitely be worth your while to review all your marketing activity.
Say you don’t do regular marketing via an email platform and don’t use a CRM to store data, but every so often, you manually send out 10 emails to companies in your area who might be in need of your services. Guess what? GDPR will apply to you!
“This is about handling data of EU persons: we don’t have offices in Europe. We don’t do much business there, that’s not our core market”
Brexit or not, we’re still part of the EU for at least the next two years so these laws will apply to us and every UK citizen.
Furthermore, there are hundreds of EU laws that will be invalidated by Brexit and will need to be replaced. This equates to a very busy parliament and a replacement law could take years to draft and pass. Until then, expect GDPR to stick around.
If you’re still in doubt see our discussion page on the future of the GDPR in the UK here…
“The marketing team already know about it, no one else needs to worry”
Yes this legislation will affect sales and marketing the most, but the entire organisation is accountable. If another department decide to send out a survey or communication to anyone who isn’t an existing client without knowing they need consent, what could the implications be?
Making everyone aware of new laws will reduce the likelihood of a mishap, and could save you thousands of pounds.
It’s a worrying time for us all, and with so much uncertainty and vagueness in these laws it’s easy to think waiting around until further clarification is released will be the best course of action.
However adapting to these laws is going to take time and a dedicated campaign, as such, taking action now is your best bet. If you’re unsure where to go from here then take a look at these 6 steps towards GDPR.
Otherwise give us a call on 01672 505050 or drop an email to firstname.lastname@example.org to talk to one of our experts and give your company the best opportunity to get GDPR ready.