GDPR

GDPR is coming. Make sure you’re ready for GDPR compliance ! Get all your questions answered here.

Everything you need to know about GDPR
How does GDPR affect your email marketing and marketing automation?
How to prepare Mailthumb to comply with the General Data Protection Regulation?
How to get ready for GDPR?

Frequently Asked Questions:

What is GDPR ?

General Data Protection Regulation, or GDPR is a legal framework that sets rules for all individuals within the European Union (EU) on data protection and privacy of personal information.

The three main objectives are:

  • To standardize data protection law across EU countries.
  • To help citizens to take control of their personal information.
  • To make companies aware of their data protection responsibilities.

Who does the GDPR apply to?

The GDPR applies,

If your company, collects or processes personal data of any European citizen, regardless of the company location.

Provided your company processes personal data of EU citizens, there exist no distinctions between various types of businesses- B2B, B2C, for-profit, and nonprofit, and you’re subjected to the laws of GDPR.

When should you be ready for the GDPR?

The GDPR will go into effect on May 25th, 2018. It’s always better to start familiarizing yourself with this new legislation and to develop a compliance plan to get fully prepared for GDPR’s requirements.

What penalties will be applied within the new regulations?

The EU General Data Protection Regulation implements fines for non-compliance, and organizations can face fines up to 4% of their annual revenue.

How is the GDPR differ from current regulations ?

Compared to the current regulations, GDPR differs by providing data protection to EU citizens and rights to individuals on personal information. This can be summarized as follows:

  • Allows consumers to take control over the storage and processing of personal data
  • A tighter definition of consent and personal data
  • More transparency on collection and use of their personal data

New rights for users

The GDPR provides the following rights of access and data protection for “data subjects”:

Right to rectification: The data subject may request to have their personal data rectified if it is inaccurate or incomplete.

Right to be forgotten: The data subject may request deletion or removal of personal data permanently.

Right to portability: The data subject may request to reuse their personal data across various organizations.

Right to object: The data subject may object to specific types of processing or uses of their personal data.

Right of access: The data subject has the right to obtain the confirmation that their data is being processed.

A new definition for consent

The new definition of consent under GDPR is one of the major changes, which should be freely given, in the form of a “positive action” for each planned use case involving the subject’s personal data.

According to GDPR, Opt-out practices (whereby subjects are automatically subscribed to a list, leaving it up to them to unsubscribe) and passive opt-in practices (pre-checked boxes in subscription forms) are no longer allowed.

The opt-in for GDPR is now the only answer to get the explicit consent, and the only legal way to obtain and use your customers’ contact information.

This means that from now on you must:

  • Create more opt-in forms for each of the different ways you make use of the customer’s personal data (e.g. newsletter, automated emails, profiling, etc.).
  • Ask users for permission each time, before you use their personal data in a new way.

Make a note that the new definition of consent applies to the personal data of European residents, collected before May 28th, 2018.

If you have received the consent for the use of this data already, you don’t have to ask for it again. However, if your current lists do not comply with the GDPR, make use of an opt-in form to ask for explicit permission from your contacts.

How is Mailthumb preparing for the arrival of the GDPR?

Mailthumb will be fully compliant with the GDPR starting 25 May 2018.

As a Mailthumb customer, the GDPR gives you more control over the personal data and makes it easier to access it.

Right to rectification: You can rectify your personal information at any time from your account settings. Contact us directly to edit or rectify your information.

Right to be forgotten: Remove your personal information and close your Mailthumb account at any time. Your request for deletion will be completed within 30 days.

Right to portability: We will export your data and transfer it to a third party or competitor on request.

Right to object: Cancel your Mailthumb subscription to any specific use of your information (newsletter, automatic emails, etc.).

Right of access: We’re transparent about data collection and processing. Please refer to our Privacy policy, to familiarize the way we collect and handle the personal data. In case of any modifications made, the users will be notified via our website or mail, and will be asked for confirmation to accept all of the new terms. Feel free to contact us any time to access and modify any of your personal data.

How to prepare for GDPR?

Learn how to rectify and delete your contacts’ information

Updating your subscription forms

Removing contacts and lists you no longer need

Consult with your legal counsel

Sign Up for free

Try our free plan and send up to 1000 emails/month. No credit card. No commitment.