We value the relationships we’ve built with our community of advisors and your privacy. The General Data Protection Regulation, or GDPR, is a European privacy law effective starting today, May 25, 2018. The GDPR affects Twenty Over Ten and sites run on Twenty Over Ten’s platform.
What is Twenty Over Ten doing to ensure compliance with the GDPR?
Twenty Over Ten does not store any personally identifiable information in Cookies. Cookies are used solely to maintain user login session associated with your account.
We understand that you care about your site visitors data. That’s why we’ve equipped all of our user’s websites with free SSL certificates to provide a trusted online connection to your site visitors.
How does Twenty Over Ten help me comply with GDPR?
Twenty Over Ten gives you the editing tools to post your own legal terms or privacy policies. For example, you can:
- Add content that informs visitors about when and how you collect data
- Customize your footer with a disclaimer
- Get consent to send marketing emails
- If you have any third party services (such as calendars, client portals, automated marketing or CRMs, ensure all third party integrations are abiding by the GDPR rules and regulation
While we cannot offer legal advice, here are some additional best practices towards website GDPR compliance:
1. Conduct a Personal data audit
Review your website and look for areas where you collect personal data, bearing in mind the modified GDPR definition of “personal data.”
Some questions to consider:
- Do you collect personal data on your site using third-party services? (e.g., Google Analytics, or a form that is connected to MailChimp). You should read the privacy policies of those services.
- Do you download or export data from your site into another system?
- Do you combine the personal data you collect with other sources of data?
- Are you gathering information you don’t need?
Once you’ve identified your data collection activities, consider making a page on your site that documents:
- What information you collect.
- Why you collect that information.
- Who you share that information with.
- Any other information required under the GDPR.