Stackla is compliant with new EU data protection regulation
Since the arrival of the internet, marketers have had to deal with the ever-evolving challenges of the digital and social media landscape – an oversaturated market, privacy, spam filters, etc. Marketers now have GDPR to contend with too.
However, it’s important to remember that GDPR provides marketers with a golden opportunity to improve data management. At the heart of it, we should ensure our marketing practices engage our customers based on and with respect for their preferences. GDPR replaces old data protection laws developed when social media and cloud services were in their infancy. With recent privacy breaches, it’s evident that an update is well overdue for our digital age.
At Stackla, data protection and privacy are baked into our product DNA, and we’re happy to announce that our platform is fully GDPR compliant.
What is GDPR?
The EU General Data Protection Regulation (GDPR) is legislation governing how marketers can use and manage “personal” data. It comes into effect across the EU on 25 May 2018 and aims to strengthen and unify data protection for all EU citizens.
It’s worth noting GDPR applies to any organisation regardless of geographic location handling the personal data of EU citizens. If you do business with Europe, this legislation applies to you.
There are significant fines for those violating its rules – up to 4 percent of a company’s annual global revenue or €20m (whichever is larger).
To put it into perspective, Tesco, for example, who last year suffered a data breach which affected 40,000 customers, would have had to pay the maximum penalty of £14.9 million had GDPR been in place at the time. In short, you don’t want to be getting this wrong.
How will GDPR affect marketers?
The collection and use of data is part of the day-to-day work of marketers. GDPR will regulate this process and hand greater control of personal data back into the hands of consumers.
Personal data is defined as any information that can be used to directly or indirectly identify a natural person. Name, email address, social user name, IP address, social media posts, you name it, but if it points to you then it is personal data – whether that data is sensitive or not.
Now more than ever, consumers are aware that their personal data is valuable to businesses and they’re also increasingly suspicious about how their data is used. GDPR will bring a new level of transparency that should lead to customers trusting brands more and having the confidence to share more data.
A opportunity to improve processes and systems
GDPR is a great opportunity for organisational change and the chance to transform your business processes for the better.
As well as aligning your own internal processes with GDPR, you will also need to evaluate suppliers and providers you work with to ensure they are also compliant. Both the Data Controller (your company) and the Data Processor (your vendor or provider) have responsibilities to store and process personal data correctly.
It’s crucial for marketers to ask any suppliers and providers accessing or processing personal data for confirmation of GDPR compliance.
This is particularly important for enterprise marketers with a complex software-as-a-service stack. A Symantec threat report this year revealed that most CIOs thought they had 30 to 40 cloud applications, while the actual average is in excess of 900. You’ll need to ensure your providers can help you meet the new regulations.
Stackla is ready for GDPR
Six months ahead of the deadline next May, Stackla has ensured that we meet the requirements for GDPR in terms of our role as a data processor of personal data on behalf of our customers.
Respect for privacy is at the core of our company. The social media posts that our customers aggregate for use in their marketing experiences are safeguarded, and we never sell personal data to anyone.
Transparency and security are essential to building customer trust and we’re fully committed to them at Stackla.