Cardinal Path is helping brands to stand up robust, GDPR-ready data processes that enrich audience experiences and create business value.
The General Data Protection Regulation takes effect May 25, 2018. Although the law is designed to protect EU data subjects (any person physically in the EU, regardless of citizenship), it will affect many organizations in North America. It’s also the start of a greater, global movement that puts consumers in charge of their personal data. We believe that marketers who embrace this new reality, starting with GDPR compliance, will create significant business value through deeper brand loyalty, greater conversions, and improved internal data processes.
The GDPR assigns responsibility to organizations in the way the collect and control data. Consider your existing processes against the following points while keeping the user experience in mind.
Less is more with the GDPR. Know what data you have, and ensure you only collect what you need to be effective marketers.
Do you have a plan or a system in place for obtaining clear and unambiguous consent from users? There’s a great opportunity to gain loyalty and drive conversions as marketers deliver experiences that respect users’ data privacy.
Brands will need to provide notices of data collection at every collection point. Get legal advice as you review and update your current privacy notices and policies.
As “data processors” marketers can reduce risk if the true identity of an individual cannot be proven through the pseudonymization or anonymization of data. Personal data can be replaced with unique identifiers in order to safeguard privacy and mitigate the risk of data breaches.
Under the GDPR EU data subjects can request to access their data or that organizations remove all traces of their personal data. It’s important to create policies and procedures around the retention and removal of internal data.
CEOs for Cardinal Path and Lytics team up to decode the regulation and share what you need to know as marketers, to prepare for this new enforcement regime but also turn this into an opportunity that will help you be more successful in your marketing efforts.WATCH WEBINAR
The live webinar featuring General Data Protection Requirements was a dynamic and engaging session throughout, with experts and practitioners alike weighing in and sharing knowledge around the multi-faceted law that is poised to alter the course of marketing forever.READ BLOG
GDPR demands a shift in thinking about the way we use personal data to do business. It will affect many people in the organization from legal, to IT. Marketers, in particular will have a major role to play as data “controllers”.
Marketers need to know what data they are collecting, where it’s stored, and how it’s shared across all digital ecosystems.
Commission a comprehensive site scan and report that outlines clear, immediate steps to ensure you are mitigating your GDPR compliance risks.
The GDPR requires that we understand and document where Data Subject info lies & to unify this into a single profile. This foundational requirement enables true identity management, which is of long-term value to the organization.
Consent is a central component to the GDPR. Managing consent will require automation and optimized processes. Stand up a system through which you can obtain unambiguous consent from people who are engaging with your brand.
GDRP compliance efforts, particularly around consent management, will likely disrupt your existing user experience. Invest in ways to ensure that your brand’s online experience is winning hearts and minds along with consent.