GDPR, otherwise known as „General Data Protection Regulation” will take effect directly in all EU countries starting from May 25, 2018. This Regulation will apply to all economic operators processing personal data for the purpose of their business activities.
Let’s start with 5 things you must know about GDPR:
- Your data (personal data of your customers) must be stored in the European Union
- Your customers have the right to be forgotten and you must allow deleting all their data
- Your customer has the right to demand for their data be transferred to another company
- You still have to gather marketing consent to process your customers’ data
- Using SALESmanago regarding the changes made by GDPR is 100% legal
Your data (personal data of your customers) must be stored in the European Union
According to the Regulation, the transfer of personal data to non-EU countries will be possible only if a given country provide an adequate level of protection (European Commission decision) and after providing the appropriate guarantees, ie based on model clauses, binding corporate rules, approved codes of conduct and if both the sender and the receiver has the “European Data Protection Certificate”. To put it simply, personal data of the customers and the servers on which they are stored and other records must be physically located in the EU.
We are ready for it! Both our headquarters and our servers are in Poland, so we meet this requirement in 100%!
Your customers have the right to be forgotten and you must allow deleting all their data
The GDPR grants to individuals whose personal data are processed a number of new new rights. One of the most important is “the right to be forgotten”, that means permanent deletion of personal data processed by the company on the basis of marketing consent. This law applies to data stored both in digital and paper form and the back-up version. If the data is processed on a contractual basis, then it is necessary to terminate the contract in a first place. For this very purpose SALESmanago will get a new button on the contact card “forget me”. This means that the right to be forgotten will be enforced with one click!
Your customer has the right to demand for their data be transferred to another company
Another advantage that GDPR will bring to consumers will be the right to demand transfer of data, eg to another entity when the contract is changed. Applies to processing:
- on the basis of marketing consent
- under the contract
- if the processing takes place in an automated manner
However, the right to request the data to be sent by the administrator directly to another administrator is to be executed only as far as it is technically feasible, eg systems are compatible.
Our platform is ready to this regulation as well. In SALESmanago you can easily transfer all contact data to external systems in a convenient form – as a flat file or via the API.
You still have to gather marketing consent to process your customers’ data
Before the GDPR, there were a number of obligations related to the processing of personal data concerning, data processing, documentation making, and information obligations. Most of them will be sustained by GDPR. However, it is important to remember that the consent obtained involves processing only the amount of data that is necessary from the point of view of processing purposes (eg shipment of ordered goods). If you want to gather more data, you will need to get permission to do so. Of course, you can offer some extras – a discount, a coupon, or an ebook. This will force the companies collecting personal data to maintain order in the databases. A well-set automation rules combined with a transparent tag system and segmentation mechanisms available on our platform will help them to keep the database organized and clean!
Using SALESmanago regarding the changes made by GDPR is 100% legal
SALESmanago as a data processing entity implements procedures in accordance with GDPR, including: user management and access management (records of authorized persons), register of personal data processing operations, monitoring and response policies, etc. The system will also allow users to perform new obligations such as realizing the user’s right to be forgotten and encrypting the customer’s personal information. In conclusion – yes, after the entry into force of the GDPR the use of SALESmanago will still be 100% legal.