{"id":1545,"date":"2018-09-21T06:13:00","date_gmt":"2018-09-21T06:13:00","guid":{"rendered":"https:\/\/www.nvecta.com\/blog\/?p=1545"},"modified":"2023-01-25T11:49:18","modified_gmt":"2023-01-25T11:49:18","slug":"gdpr-compliance","status":"publish","type":"post","link":"https:\/\/www.nvecta.com\/blog\/gdpr-compliance\/","title":{"rendered":"GDPR Compliance"},"content":{"rendered":"<p><strong>Disclaimer:<\/strong> This blog has been created for bloggers and site owners to understand GDPR easily. We are not lawyers and we take no responsibility for the advice provided. It is entirely your responsibility to be aware and fully compliant with regulations.<\/p>\n<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_82_2 counter-hierarchy ez-toc-counter ez-toc-transparent ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Contents<\/p>\n<span class=\"ez-toc-title-toggle\"><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/www.nvecta.com\/blog\/gdpr-compliance\/#What_is_GDPR\" >What is GDPR<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/www.nvecta.com\/blog\/gdpr-compliance\/#Users_Rights_under_GDPR\" >User\u2019s Rights under GDPR<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/www.nvecta.com\/blog\/gdpr-compliance\/#Companies_under_GDPR\" >Companies under GDPR<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/www.nvecta.com\/blog\/gdpr-compliance\/#The_cost_of_non-compliance\" >The cost of non-compliance<\/a><\/li><\/ul><\/nav><\/div>\n<h2><span class=\"ez-toc-section\" id=\"What_is_GDPR\"><\/span><span style=\"font-weight: 400;\">What is GDPR<\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p><span style=\"font-weight: 400;\">GDPR stands for <\/span><span style=\"font-weight: 400;\">General Data Protection Regulation. GDPR is a data protection law that deals with how companies operating in Europe, handle personal information of customers. GDPR comes into effect across the European Union on 25th May 2018 and impacts several businesses that operate directly or indirectly in the EU. Companies providing services in EU without GDPR compliance have to pay fine. The maximum fine for non-compliance is 20 million Euro or 4% of the annual revenue of the company.<\/span><\/p>\n<h2><span class=\"ez-toc-section\" id=\"Users_Rights_under_GDPR\"><\/span>User\u2019s Rights under GDPR<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p><span style=\"font-weight: 400;\"><strong>GDPR<\/strong> states that if a website collecting or storing data related to an EU citizen, then website must be complying with the following rules:<\/span><\/p>\n<style>table, td, th{border:0px;}<\/style>\n<table>\n<tbody>\n<tr>\n<td rowspan=\"2\"><b><img decoding=\"async\" class=\"ricon alignleft wp-image-1717 size-full\" src=\"https:\/\/cdn3.notifyvisitors.com\/blog\/wp-content\/uploads\/2018\/09\/21063015\/consent.jpg\" alt=\"\" width=\"40\" height=\"40\" \/><\/b><\/td>\n<td><b>Consent<\/b><\/td>\n<\/tr>\n<tr>\n<td><span style=\"font-weight: 400;\">Companies must get clear consent from users before collecting their data.<\/span><\/td>\n<\/tr>\n<tr>\n<td rowspan=\"2\"><b><img decoding=\"async\" class=\"aligncenter size-full wp-image-1721\" src=\"https:\/\/cdn3.notifyvisitors.com\/blog\/wp-content\/uploads\/2018\/09\/21064310\/communication.jpg\" alt=\"\" width=\"40\" height=\"40\" \/><\/b><\/td>\n<td><b>Communication<\/b><\/td>\n<\/tr>\n<tr>\n<td><span style=\"font-weight: 400;\">Users must be informed what data website is collecting and storing and how long it will be stored.<\/span><\/td>\n<\/tr>\n<tr>\n<td rowspan=\"2\"><img decoding=\"async\" class=\"aligncenter size-full wp-image-1718\" src=\"https:\/\/cdn3.notifyvisitors.com\/blog\/wp-content\/uploads\/2018\/09\/21063054\/access-portability.jpg\" alt=\"\" width=\"40\" height=\"40\" \/><\/td>\n<td><b>Access and Portability<\/b><\/td>\n<\/tr>\n<tr>\n<td><span style=\"font-weight: 400;\">Users must have access to edit\/delete their data.<\/span><\/td>\n<\/tr>\n<tr>\n<td rowspan=\"2\"><b><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-1719\" src=\"https:\/\/cdn3.notifyvisitors.com\/blog\/wp-content\/uploads\/2018\/09\/21063109\/warning.jpg\" alt=\"\" width=\"40\" height=\"40\" \/><\/b><\/td>\n<td><b>Warnings<\/b><\/td>\n<\/tr>\n<tr>\n<td><span style=\"font-weight: 400;\">Users must be informed if data breaches occur.<\/span><\/td>\n<\/tr>\n<tr>\n<td rowspan=\"2\"><b><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-1723\" src=\"https:\/\/cdn3.notifyvisitors.com\/blog\/wp-content\/uploads\/2018\/09\/21064402\/marketing-hhg1.png\" alt=\"\" width=\"40\" height=\"40\" \/><\/b><\/td>\n<td><b>Marketing<\/b><\/td>\n<\/tr>\n<tr>\n<td><span style=\"font-weight: 400;\">Give people the right to opt out of direct marketing that uses their data.<\/span><\/td>\n<\/tr>\n<tr>\n<td rowspan=\"2\"><b><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-1725\" src=\"https:\/\/cdn3.notifyvisitors.com\/blog\/wp-content\/uploads\/2018\/09\/21064441\/childrens-data2.jpg\" alt=\"\" width=\"40\" height=\"40\" \/><\/b><\/td>\n<td><b>Children\u2019s data<\/b><\/td>\n<\/tr>\n<tr>\n<td><span style=\"font-weight: 400;\">If you are Collecting data from children under 16 then you must get parental consent<\/span><b>.<\/b><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p><b><a href=\"https:\/\/dev1.notifyvisitors.com\/blog\/wp-content\/uploads\/2018\/07\/Consent.jpg\" target=\"_blank\" rel=\"noopener\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-204 alignleft\" src=\"https:\/\/dev1.notifyvisitors.com\/blog\/wp-content\/uploads\/2018\/07\/Consent.jpg\" alt=\"\" width=\"39\" height=\"39\" \/><\/a><\/b><b><\/b><\/p>\n<h3><span class=\"ez-toc-section\" id=\"Companies_under_GDPR\"><\/span><strong>Companies under GDPR<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p><span style=\"font-weight: 400;\">Under GDPR, companies are broadly classified as follows: <\/span><\/p>\n<ul>\n<li>Data controllers:<span style=\"font-weight: 400;\"> companies that determine the purposes and means of the processing of personal data. Here you are data Controllers.<\/span><\/li>\n<li>Data processors:<span style=\"font-weight: 400;\"> companies which process personal data on behalf and on the instructions of the controller. Here companies like <a href=\"https:\/\/www.nvecta.com\/blog\/introduction-to-notifyvisitors-advanced-dashboard-features\/\">NotifyVisitors<\/a> are data processors.<\/span><\/li>\n<\/ul>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-1547\" src=\"https:\/\/cdn3.notifyvisitors.com\/blog\/wp-content\/uploads\/2018\/08\/02105534\/GDPR-data-controller.png\" alt=\"\" width=\"557\" height=\"290\" srcset=\"https:\/\/cdn3.notifyvisitors.com\/blog\/wp-content\/uploads\/2018\/08\/02105534\/GDPR-data-controller.png 1200w, https:\/\/cdn3.notifyvisitors.com\/blog\/wp-content\/uploads\/2018\/08\/02105534\/GDPR-data-controller-300x156.png 300w, https:\/\/cdn3.notifyvisitors.com\/blog\/wp-content\/uploads\/2018\/08\/02105534\/GDPR-data-controller-768x400.png 768w, https:\/\/cdn3.notifyvisitors.com\/blog\/wp-content\/uploads\/2018\/08\/02105534\/GDPR-data-controller-1024x533.png 1024w, https:\/\/cdn3.notifyvisitors.com\/blog\/wp-content\/uploads\/2018\/08\/02105534\/GDPR-data-controller-370x193.png 370w, https:\/\/cdn3.notifyvisitors.com\/blog\/wp-content\/uploads\/2018\/08\/02105534\/GDPR-data-controller-270x141.png 270w, https:\/\/cdn3.notifyvisitors.com\/blog\/wp-content\/uploads\/2018\/08\/02105534\/GDPR-data-controller-740x385.png 740w\" sizes=\"(max-width: 557px) 100vw, 557px\" \/><\/p>\n<p style=\"text-align: left;\"><a href=\"https:\/\/dev1.notifyvisitors.com\/blog\/wp-content\/uploads\/2018\/07\/GDPR-data-controller.png\" target=\"_blank\" rel=\"noopener\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-224 aligncenter\" src=\"https:\/\/dev1.notifyvisitors.com\/blog\/wp-content\/uploads\/2018\/07\/GDPR-data-controller.png\" alt=\"\" width=\"699\" height=\"364\" \/><\/a>The GDPR affects only companies that collect, store, and process \u2018personal data\u2019 of users in the EU. Personal data of user includes Name, Address, Localisation, Online identifier, Health information, Income, Cultural profile and more.<\/p>\n<p style=\"text-align: left;\"><span style=\"font-weight: 400;\">Any company that stores or processes personal information about EU citizens within EU states must comply with the GDPR, even if they do not have a business presence within the EU. Specific criteria for companies required to comply are:<\/span><\/p>\n<ul>\n<li style=\"text-align: left;\"><span style=\"font-weight: 400;\">A presence in an EU country.<\/span><\/li>\n<li style=\"text-align: left;\"><span style=\"font-weight: 400;\">No presence in the EU, but it processes the personal data of European residents.<\/span><\/li>\n<li style=\"text-align: left;\"><span style=\"font-weight: 400;\">More than 250 employees.<\/span><\/li>\n<li style=\"text-align: left;\"><span style=\"font-weight: 400;\">Fewer than 250 employees but its data-processing impacts the rights and freedoms of data subjects, is not occasional or includes certain types of sensitive personal data.<\/span><\/li>\n<\/ul>\n<h2><span class=\"ez-toc-section\" id=\"The_cost_of_non-compliance\"><\/span><span style=\"font-weight: 400;\">The cost of non-compliance<\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p><span style=\"font-weight: 400;\">The maximum fine for non-compliance with GDPR is 20 million Euro or 4% of annual revenue.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">According to the European Commission, the process for non-compliance is as follows:<\/span><\/p>\n<p style=\"text-align: left;\"><a href=\"https:\/\/dev1.notifyvisitors.com\/blog\/wp-content\/uploads\/2018\/07\/gdpr-non-compliance.png\" target=\"_blank\" rel=\"noopener\"><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-225 aligncenter\" src=\"https:\/\/dev1.notifyvisitors.com\/blog\/wp-content\/uploads\/2018\/07\/gdpr-non-compliance.png\" alt=\"\" width=\"1125\" height=\"449\" \/><\/a><\/p>\n<p style=\"text-align: left;\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-1565\" src=\"https:\/\/cdn3.notifyvisitors.com\/blog\/wp-content\/uploads\/2018\/08\/02122547\/compliance.jpg\" alt=\"\" width=\"1125\" height=\"449\" srcset=\"https:\/\/cdn3.notifyvisitors.com\/blog\/wp-content\/uploads\/2018\/08\/02122547\/compliance.jpg 1125w, https:\/\/cdn3.notifyvisitors.com\/blog\/wp-content\/uploads\/2018\/08\/02122547\/compliance-300x120.jpg 300w, https:\/\/cdn3.notifyvisitors.com\/blog\/wp-content\/uploads\/2018\/08\/02122547\/compliance-768x307.jpg 768w, https:\/\/cdn3.notifyvisitors.com\/blog\/wp-content\/uploads\/2018\/08\/02122547\/compliance-1024x409.jpg 1024w, https:\/\/cdn3.notifyvisitors.com\/blog\/wp-content\/uploads\/2018\/08\/02122547\/compliance-370x148.jpg 370w, https:\/\/cdn3.notifyvisitors.com\/blog\/wp-content\/uploads\/2018\/08\/02122547\/compliance-270x108.jpg 270w, https:\/\/cdn3.notifyvisitors.com\/blog\/wp-content\/uploads\/2018\/08\/02122547\/compliance-740x295.jpg 740w\" sizes=\"(max-width: 1125px) 100vw, 1125px\" \/><\/p>\n<p style=\"text-align: left;\">If your website is not fully compliant with GDPR, the first stage of the process is a \u201cwarning\u201d followed by steps shown image above.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Disclaimer: This blog has been created for bloggers and site owners to understand GDPR easily. We are not lawyers and we take no responsibility for the advice provided. It is entirely your responsibility to be aware and fully compliant with regulations. What is GDPR GDPR stands for General Data Protection Regulation. GDPR is a data [&hellip;]<\/p>\n","protected":false},"author":5,"featured_media":7710,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_gspb_post_css":"","footnotes":""},"categories":[1],"tags":[],"class_list":["post-1545","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-seo"],"_links":{"self":[{"href":"https:\/\/www.nvecta.com\/blog\/wp-json\/wp\/v2\/posts\/1545","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.nvecta.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.nvecta.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.nvecta.com\/blog\/wp-json\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/www.nvecta.com\/blog\/wp-json\/wp\/v2\/comments?post=1545"}],"version-history":[{"count":14,"href":"https:\/\/www.nvecta.com\/blog\/wp-json\/wp\/v2\/posts\/1545\/revisions"}],"predecessor-version":[{"id":17399,"href":"https:\/\/www.nvecta.com\/blog\/wp-json\/wp\/v2\/posts\/1545\/revisions\/17399"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.nvecta.com\/blog\/wp-json\/wp\/v2\/media\/7710"}],"wp:attachment":[{"href":"https:\/\/www.nvecta.com\/blog\/wp-json\/wp\/v2\/media?parent=1545"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.nvecta.com\/blog\/wp-json\/wp\/v2\/categories?post=1545"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.nvecta.com\/blog\/wp-json\/wp\/v2\/tags?post=1545"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}