How will it affect me?
The GDPR is not only about your own website - it will also apply to organisations located outside of the EU if they provide goods or services to, or monitor the behaviour of, EU data subjects. For instance, if your website is integrated with a third party software provider that’s located outside of the EU, that software and the provider will also need to be GDPR compliant for you and your business to ensure compliance. Within the GDPR the conditions for consent have been strengthened, as companies will no longer be able to use long, illegible terms and conditions full of legalese. The request for consent must be made in a clear, easily accessible form. Consent must be distinguishable from other matters and requested in plain language. It must also be as easy to withdraw consent. Explicit consent is required for processing all sensitive personal data. What does this actually mean? Nothing short of “opt in” will suffice!