In the final days before the GDPR enforcement deadline, on May 23, 2018, FormAssembly’s VP of Marketing, Ashley McAlpin, co-hosted a webinar with Cloud for Good’s CEO, Tal Frankfurt, and Marketing Manager, Jenn Tate. The three facilitated a helpful discussion on how to approach the GDPR in order to maintain compliance.
Understand Why the GDPR is Important
Knowing how to approach the GDPR is crucial from a customer service perspective, since the customer is now the center of the data controller and data subject relationship. Moreover, there are now significant fines for non-compliant businesses and organizations. Under new regulations, data privacy compliance is now as important as antitrust or anti-bribery laws. Since there is extensive territorial scope involved under the GDPR, it will likely define future privacy practices.
Practical Steps
The first step in approaching the GDPR is assessing your data by deciding if your organization is affected and by reviewing your organization’s personally identifiable information (PII) lifecycle. The second step is to identify what may need to change including opt-outs, data sources, and data ownership. The last step is to establish a review process and to define an enforcement structure for moving forward.
New or Enhanced Rights for Data Subjects
In understanding how to approach the GDPR, organizations must also understand new rights for data subjects which include the right to be forgotten, the right of data portability, and the right to object to profiling. As a result of these newly defined rights, organizations must have the necessary technical and administrative systems in place to comply in a timely and responsible manner. These rights underscore the importance of selecting a solution that is compliant and prepared for the future of data stewardship.
FormAssembly & Cloud for Good: GDPR Ready
FormAssembly is committed to the highest level of security procedures and policies, and we strive to provide high-quality resources to help our clients know how to approach the GDPR. Existing FormAssembly customers to whom the GDPR applies should carefully review and sign the Data Processing Addendum, which contractually binds us to meet data processing obligations and to protect the rights of data subjects. Cloud for Good is also preparing for compliance by providing GDPR training to all staff, updating their privacy policy, and helping clients find best practices according to Salesforce and GDPR.
Ready to watch the full webinar recording?
