The new General Data Protection Regulation came into enforcement on the 25th May 2018, but don't worry if you are still feeling unsure about how this impacts you or what you are supposed to do about it.
As a small business or Self Employed Sole Trader the Law does apply to you, but it doesn't have to be a tremendous burden or a difficult thing to comply with. A couple of days before the enforcement date I did 2 Facebook Live broadcasts walking through the legislation.
In Video 1 I discuss the 6 core principles of GDPR, these aren't as scary as the Law itself might sound and there are some really easy practical steps you can take to be GDPR compliant.
Those 6 Core Principle are:
- Personal Information needs to be processed lawfully, fairly and in a transparent manner.
- Personal Information can only be collected for specific, explicit and legitimate reasons.
- Personal data needs to be adequate, relevant and limited to only what is necessary.
- Personal data must be accurate and kept up-to-date.
- You can only keep Personal data for as long as necessary.
- When recording, using or storing personal information you must consider it's security in your processes.
Check out the video below for a more detailed explanation of these principles and some practical guidance to apply them to your baking or crafting business.
Also, if you need the Privacy Policy and Data Management Guide I talk about then click that link to download them.
Don't forget to check my GDPR Part 2 video for more simple and straightforward steps you can take to make sure your clients data is being collected, used and stored in a good way that also happens to be GDPR compliant.
And if you have any unanswered questions or worries about this feel absolutely free to ask a question in the comments below, in the comments on Facebook or message me privately and I'll do my best to help you.
Now that you have that handled you can get on with making something delicious!
Happy Baking!
XX