Are you GDPR ready?

Blog post -

Are you GDPR ready?

Most organizations today should be GDPR compliant already. And hopefully, most organizations will avoid the fines and embrace the opportunities that GDPR will bring to the PR industry. However, only time will reveal the actual impact these regulations will have on businesses.

The definitive GDPR checklist

Even if you’re a small business, you won’t be exempt from the rules. Making sure you know the facts is essential. Don’t make the mistake of thinking that GDPR isn’t relevant; not complying with it could result in a substantial financial drain on your company.

Streamlining and protecting data will not only have benefits for the people you work with, but it will also be critical to the relationships you build and grow with journalists. Being transparent about what data you hold on them, and protecting that data, will build trust and strengthen working relationships.

Here’s our definitive checklist:

1. Update your privacy policy

Make sure your privacy policy is up to date, with specifics stated such as:

  • The data retention period
  • The identity of the controller
  • The purposes of data processing
  • Who will have access to that data
  • Data transfer policies
  • An overview of the right to request
  • Consent withdrawal
  • How to lodge a complaint

Make sure it’s in a visible place on your website for individuals to reference at ease.

2. Define your legal ground for processing data

Ensure you have defined the legal ground for processing data, whether that’s consent or legitimate interest. Also, ensure you have the documentation should you need to prove compliance. If you opt for the legitimate interest route, ensure you carry out a Legitimate Interests Assessment (LIA) and that it’s available for everyone in your organization to reference.

Note, however, LIA may not apply to your organization either.

3. Handle deletion requests

Ensure you have a formal process in place for deletion requests from individuals and that everyone in the organization is clear as to whose responsibility it is to remove data.

4. Audit third parties

Are they GDPR compliant? It’s not enough to assume that third parties and suppliers are compliant — you need to ensure that they too adhere to the new regulations. Audit your vendors/sub-processor for GDPR compliance.

5. Prepare your staff

Train staff on best practice when it comes to GDPR. Make sure they know your privacy policy, as well as how they should be sharing and storing data. They should also be made aware of how GDPR will affect their day-to-day working. It’s essential they understand that relatively routine tasks, such as email blasts, may need to undergo greater scrutiny to ensure compliance before being sent, once the rules come into force.

If you would like to learn more about the implications of GDPR on the PR and communications industry, please get your copy of "GDPR - The Ultimate Guide for PR pros."

Get your copy!

Topics

Contacts

Press Officer

Press Officer

Press contact Media inquires
Adam Karseland

Adam Karseland

Press contact Press contact +46 79-075 64 25

Related content

Mynewsdesk - The smart way to improve awareness and relations

Mynewsdesk helps companies create awareness, find the right audience and build strong relationships.

By providing a user-friendly online solution, Mynewsdesk simplifies and streamlines the publishing, distribution and measuring of your PR and communication efforts. All in one digital place. By consolidating all aspects of PR in one platform, brand and media monitoring is also made easy, helping companies track their engagement over time .

Mynewsdesk has 1.6 million unique visitors monthly and publishes 80,000 news stories per year. Over 4,000 companies across the globe trust Mynewsdesk’s platform to improve their PR efforts and 70% gain media uptake on their news.

Find out more at: www.mynewsdesk.com

Mynewsdesk

Rosenlundsgatan 40
11853 Stockholm
Sverige

Mynewsdesk on Facebook
Contact us
Build your own newsroom in 10 minutes
Visit our other newsrooms