We’ve made a lot of progress since the last blog so, here’s where we are currently up to.
We have optimised our Web and Mobile check out pages to comply with new regulations. We have made this process clearer to opt out. By law we have to now add in the Promoter details on the check out process (you can edit your company name if it’s incorrect, within your Profile).
Below is an example of our new marketing checkout process. We are using Legitimate interest for our customers and are using the consent option for promoters. The reason behind this is the customer is more likely to expect marketing from ourselves but not necessarily from promoters. More information on this will be released shortly.
Moving forwards, we will be making our customer data downloads clear to show which customers have opted in/out of receiving marketing from you.
We are in the process of creating a dedicated GDPR page on Skiddle, this page will outline all the information you need and what changes Skiddle will be making.
Shortly we will also be creating a help section for all promoters, this will be an easy to follow guide to assist you in making sure you are handling your data correctly.
In the next few weeks a new data sharing agreement will be available, this agreement will be between every promoter and Skiddle and will outline the new changes needed for direct marketing.
Skiddle are here to help you make sure you are doing the right thing with customers data.
Where are we up to to becoming compliant?
We are taking many steps across our business to ensure we are GDPR compliant:
- Thoroughly research the areas of our business impacted by GDPR – COMPLETE
- Appoint a Data Protection Manager – COMPLETE
- Rewrite our Data Protection Agreement – IN PROGRESS
- Create a roadmap of all data and assess the new risks – COMPLETE
- Assess all third-party company data policies – IN PROGRESS
- Perform the necessary changes/improvements to our product based on the requirements – COMPLETE
- Implement the required changes to our internal processes and procedures required to achieve and maintain compliance with GDPR – IN PROGRESS