The European Union Data Protection Regulation(GDPR) law is going to be effective from May 25th 2018 and if you have clients and services across EU, then you should definitely make your website compliant with the regulations.
[ To know more about GDPR, read the article 'What is GDPR and what it means to a website owner?']
The following is a checklist to ensure that your website is a GDPR compliant one. Ensure that:
- Users are informed in clear and simple language about the cookies used on your site to collect data.
- Users have the option to reset their cookie preferences.
- Consent is obtained before a personal information is processed.
- Users have the option to withdraw their consent.
- Modules used in the site gathers only the necessary (i.e. not needed for provision of service) personal data of site visitors.
- Registration forms or lead capture forms used in your site provides a clear explanation about the purpose and does not contain preselected checkboxes.
- No emails are configured in your site to send without the user’s consent.
- Users can easily request access to their personal information.
- Users can edit their own personal information.
- Users can request deletion of their personal information.
- Erasure of data involves erasure of personal information from any 3rd party sites linked with your site.
- Users can request to stop processing their personal information.
- Users can export their own personal information.
- There is a measure to obtain consent of a parent, if the child is below 16 years of age.
- Upon completion of the task for which the user data is collected, the data should be automatically deleted.
To know more about the steps to follow to become GDPR complaint, read the article on 'Making your website GDPR compliant'
For development assistance with the GDPR compliance process of your website, get in touch with us!