Since posting my privacy and cookie policies for you to steal and use last week, I’ve received some GDPR-related questions.
You have to be compliant in less than 10 days, so I’ve collected the questions and answered them in this blog post to hopefully clear things up for you.
Before we get started, I’ve got to add my usual disclaimer: This isn’t legal advice considering I’m not a lawyer (thank the stars…no offense husband!). I do have a super talented lawyer advising me, but you should always consult your own lawyer.
Let’s get right into it…
1. Does this apply to me if I’m in the United States or another country that’s not located in Europe?
If you’re an online business OR a brick and mortar business that collects personal data and ANY of it comes from people in Europe, this applies to you.
(I’m looking at you lady who emailed me to tell me this doesn’t apply to U.S. businesses and that I’m overreacting. Ummmm…do you see all the U.S. businesses who are sending out emails to say they’ve updated their privacy policies in compliance?)
2. Does this apply to me if I don’t sell anything yet?
3. Do I need to add a link to my privacy policies to my email opt-in forms?
This is something you need to do to be GDPR compliant.
4. Do I need everyone on my email list to opt in all over again?
Here’s where things get tricky. If you want to completely cover your bum, have your list opt in all over again when you’ve made everything GDPR compliant.
Obviously most companies don’t want to do this, because they’re going to lose a bunch of people on their lists.
Instead, most companies (and this is what I’m going to do) are emailing their lists once they’ve gotten everything GDPR ready with their new privacy and cookie policies. In this email, there’s a way to unsubscribe (like in every email) if subscribers aren’t okay with your new policies.
This is what I’ve seen pretty much everyone do from big to small companies. If I were you, I would jump on this train.
5. What are the rules around this whole “cookies pop-up form” thingy?
If you’re worried about this affecting your website, don’t…people will get used to seeing this really quickly. It will become invisible to people within days. We adapt to things like this.
(I would walk you through how to do this, but I didn’t do it. My awesome web designer, Amanda Creek did. She offers consulting, so hit her up if you’re struggling with this whole GDPR thing and she if she has any openings.)
6. How long do I need to keep the cookies pop up form on my blog or website?
For now, indefinitely.
7. Are “they” really going to come after a small business like mine if I don’t comply?
Do I look like a fortune-teller? I don’t know…but I wouldn’t get caught in Europe breaking the law if you haven’t complied.
Also, do you want to be the type of business that doesn’t comply with the law? A business that isn’t transparent and looks like it has something to hide? Really?
Still behind on getting GDPR compliant? You can download my privacy and cookie policies to use as a basis for your own right here!
I hope this helps to answer any lingering questions you might have.
We can do this ladies! We’re smart, capable women. And, we want to treat the people who come to our websites like actual people…not numbers. That’s partly what this is about. Let’s make these last changes and feel good about the business we’re doing.