By now we are imagining you have heard of GDPR (General Data Protection Regulations )? It’s the new EU regs coming into play on May 25th 2018 concerning data protection.
It’s a big deal and it will affect nearly every website running at the moment.
What to ask about your website
This list of questions cover the main elements of your website that are affected by GDPR:
- Does it track your visitors? – You may not know this one as we install Google Analytics and other tracking code such as Facebook’s Pixel for our clients so you may need to ask;
- Does it take personal data through enquiry forms? – Does it have any sort of form which asks the user for their information?;
- Does it take personal data through lead capture popups? – Is there a pop up capturing email addresses and names?;
YES? Then the next set of questions are important:
- Is your website secure? – Are you currently using a secure layer for your website? Does it show HTTPS or not? The address bar will show if it’s green or not. You need to be using HTTPS if you are transferring any personal data;
Your website needs to be ready and there is a 99.9% chance that at least one of these things will need your attention.
Third Parties – who are they?
If you’ve done your GDPR research, you’ve probably read a lot about ‘Third Parties’. This doesn’t just refer to unsolicited marketing companies, 9 times out of 10 they are our trusted suppliers who help make everything come together. An example of this is form suppliers, analytics for your website and hosting companies. So if you’ve got Google Analytics on your website, use Facebook Advertising, use email tracking and automation, or have a form on your website, you’re almost certainly using third parties to process your data.
Whose responsibility is it?
Your company website is your property and merely hosted and backed up by us. It is your responsibility to make sure your website is compliant by either implementing changes yourself or getting someone like us to do it for you. Obviously, as we look after your website, built it and host it we are a great choice 🙂
How can we help your website get compliant?
As GDPR is a pretty complex thing and a potential minefield we have spent some time understanding what we can do in order to make our site compliant and use these changes to help you!
Our GDPR package includes an audit of your website, the standard changes needed and we’ll notify you of any extra things that might need taking care of to make sure your site is fully GDPR compliant.
How much do we charge?
We’ve wrapped up some nice little packages for you to help make your website GDPR compliant.
CORE REQUIREMENTS – Website GDPR Compliance package
We’ll audit your site and carry out the following updates:
- Update website enquiry forms to cover the opt-in process and remove any implied consent;
- Advise which third parties are providing services for your website, ensure these are compliant and advise you if any further actions need to be taken;
- Upgrade your website to use Google Tag Manager
- RECOMMENDED + optionally we’ll delete your existing contacts from website forms on 25th May – £49
EXTRA – Lead capture GDPR compliance updates
Your lead capture is a crucial element to getting those extra leads from your website so it’s important we keep that running in a compliant way, whether you’ve got one lead capture form or several.
- Single Lead Capture form – £299
- Bulk Lead Capture forms (up to 5 systems) – £499
A MUST – Secure your website with Https
How do you ensure that your data in transit is secure? Https or SSL is the technology that encrypts your connection to a website so that hackers can’t intercept any of your data. So Https is essential anywhere that data is collected and is becoming essential in Google search results – you may have noticed the big green ticks appearing against website listing in Google search results – this is Google’s way of showing users which sites are secure and safe to visit and Google is indexing these ahead of non-secure sites.
- We’ll install an SSL certificate on your website. Price includes the certificate for the first year and is renewable each year from £75.
IF NEEDED – Website Subscriber Consent Mailer
So you’ve got a great mailing list – but what’s going to happen to that? Well, GDPR is all about getting consent from users, and having a lawful basis on which to collect personal data. If you haven’t obtained consent to continue sending emails, sending texts, phoning or writing, to your subscribers, before the 25th May 2018, then the law is that you must delete them. Not only should you gain their consent, you need to be able to prove it – so record keeping is a must!
- We’ll create and send a mailer to your existing website subscribers asking them for consent under the new GDPR regulations. They can then opt in. If they choose not to opt-in, or do nothing, we will delete them for you.
The small print
The services listed here are not exhaustive and there may be additional work needed for your website to become fully compliant. If we believe there is work required beyond the scope of our standard packages, we will notify you and make our recommendations. All prices are +vat.
All GDPR services are provided to the best of our knowledge. We are not legal experts in the matter and we recommend that, if you haven’t already, you engage the services of a legal GDPR specialist.
All the above prices are subject to VAT at the current rate.