- Thread starter
- #101
Agreed. But at least ICO has the powers to chase and meaningly fine the ones that have abused the dp requirements for many years. Educate yes, but after that there’s no excuse/defence.
Got something to say or just want fewer pesky ads? Join us... 😊
[News] Drowning under GDPR emails
- Thread starter timbha
- Start date
Agreed. But at least ICO has the powers to chase and meaningly fine the ones that have abused the dp requirements for many years. Educate yes, but after that there’s no excuse/defence.
driddles
Well-known member
I took over managing a list here in Canada. They hadn't followed the Canadian double opt in laws so I set up an email to double opt in everyone based on Canadian double opt in laws 3 weeks ago.
Now we're being told that as some of our list are in Europe we need to double opt in everyone again for GDPR. I'm sure the spamcos will all follow these rules closely.
Now we're being told that as some of our list are in Europe we need to double opt in everyone again for GDPR. I'm sure the spamcos will all follow these rules closely.
SUA Seagull
Well-known member
Hello good folk of NSC. From reading this thread it seems as if many of you are fully up to speed with GDPR, whereas I am most definitely not so could do with some help please! I am a sole trader running my own company with only a couple of clients and retirement less than a year away. I am not very IT savvy and have not focused on GDPR, assuming it wouldn’t affect me. Now I fear it may. I don’t cold call or actively market and the only data I retain is email addresses/contact names of existing clients (who’ve provided me with their data) and contact data for some financial institutions I occasionally approach on my clients’ behalf (most of which the institutions provided directly to me but a fraction of which I sourced via other contacts), as well as data that’s already in the public domain. What do I need to do re GDPR? Is a simple Privacy Policy statement on my company’s website sufficient, in its capacity as a “data controller”? Any guidance would be most appreciated, thank you.
hitony
Administrator
Not now left there end of 2008 was a Regional Operations Manager with them for 9 years and a Senior Site Manager before that - do you? (that said I have just looked at your username so probably not!
)
Dorset Seagull
Once Dolphin, Now Seagull
I look forward to never receiving an e mail about bitcoins soon then
jasetheace
New member
- Apr 13, 2011
- 712
I checked this in passing conversation with our lawyers late yesterday and they are comfortable that this is not required. They do however recommend that in addition to the many documents that many of us would have produced, that we create a "chronology" of actions taken to prepare for GDPR as first point of reference should an inspection or response to complaint/breach ever be required.
- Thread starter
- #107
Thanks. Your legal advice makes good sense and would be the first piece of mitigation
A mex eyecan
Well-known member
- Nov 3, 2011
- 3,872
ignoring the many many consent requests, hopefully ridding all the crap that hits my in box is almost cathartic
Hampster Gull
Well-known member
- Dec 22, 2010
- 13,465
I hope for the same but have followed a different approach. I unsubscribe from nearly all of them. Let’s see, too early to declare victory
thedonkeycentrehalf
Moved back to wear the gloves (again)
- Jul 7, 2003
- 9,340
Wouldn't say I am an expert but have just spent a day in a GDPR workshop with our external consultants and am part of the business GDPR team for my company (for my sins). My understanding is that, at a simple level then yes, you should have the privacy statement which explains what data you keep and why and who to contact if there are any requests. If you look around the internet, have a look at other Privacy Policies to see what they say and the create your own.
You have to have a nominated Data Controller (yourself) and you should know where any of your structured data - i.e. any information about your clients - is stored so that in the unlikely event that one were to put in a request, you can demonstrate which data you hold and ensure it is completely reported / removed as per their request. I'm assuming that is in some form of simple database - whether that is an Excel sheet or even something as simple as a Word document.
SUA Seagull
Well-known member
Thank you TDCH; very helpful. I located an appropriate (and simple) Privacy Policy template which I adapted for my own needs. I already keep all of my client data in separate customer files in File Explorer, so I've ticked that box too. I appreciate you taking the time to respond, thanks again.
There was nothing wrong with the Y2K panic ..... some of us were very productive
Only New Year I've ever been on call but boy was the x5 time worth it !
- Aug 8, 2005
- 27,221
We now seem to have hit overload day on "we have updated our privacy policy" . Has anyone actually clicked on any of these policies and read them? What is the point of all this really?
I'm tempted to reply to some with, who are you and how did you get my details?
I'm tempted to reply to some with, who are you and how did you get my details?
Lawro's Lip
New member
Somewhere in the email should be an opportunity to unsubscribe.
About 75% of mine have been a click here to opt back in. It's telling I've not had a single email from recruitment agents about my data ...... and a lot have my CV !
Been ploughing through my email inbox getting rid of the crap I no longer want to receive marketing BS from, when a thought occurred to me: no GDPR email received from BHAFC. Has anyone had one?
bluenitsuj
Listen to me!!!
burnee54
East Upper Hermit
Thank you EU...That's a great way of slimming down my overly inflated inbox.
beorhthelm
A. Virgo, Football Genius
- Jul 21, 2003
- 36,014
i wondered about that, then found they've been going to spam.