GDPR – Is your business compliant?

From 25th May 2018, GDPR – General Data Protection Regulations – come into force. Regardless of the size or turnover of your business, these new EU regulations will significantly change the way you obtain and record personal data. That's even after Brexit.

GDPR – Is your business compliant?

TH!NK PRIVACY campaign logo (ICO)

Whether you store email addresses, telephone numbers or any other form of personal data, GDPR requires you to gain the formal consent of individuals you contact. That's if you want to send them email marketing or make unsolicited telephone calls.

GDPR will also allow consumers and businesses to have access to the data you hold about them: it's all about making the use and purpose of holding data transparent and lawful from the beginning.

Similar rules have been in place under the Data Protection Act (1998) but GDPR will further strengthen peoples' rights over their personal data, focus on cyber security issues, and increase sanctions around the misuse of data.

Not fussed?

Overseen by the Information Commissioner's Office (ICO), increased penalties range from the issue of warnings to hefty fines – up to 4% of a business's turnover or €20m. So, all in all, this is something to take notice of.

Worried you don't comply? That's where Bate Brand come in.

We have all the services your business needs to get compliant with GDPR. We can:

1) Add an SSL Certificate to your website

SSL - Secure Sockets Layer - Certificates protect sensitive information, be it login details or credit card information. When you get your certificate, a padlock will appear next to your URL in the web address bar and will be marked with 'HTTPS' rather than 'HTTP.' Customers will know that they can trust your website, and that any information they give you will be secure.

We recently bought our SSL certificate. Here's what you will see:


GDPR – Is your business compliant?

2) Add simple Opt-In/Opt-Out check boxes

You can't send marketing emails to anyone, B2B or B2C, without their consent.

Your online contact form, where users add their name, email address and a message, should have a pair of Opt-In/Opt-Out check boxes that give users a clear option to receive emails from you.

We don't necessarily have to have built your website – as long as we have full access we'll be able to give you an accurate quote to update it.

3) Provide a Privacy Policy template and a Privacy Policy page

We can provide a standard Privacy Policy template for you to amend to your business needs and then add a Privacy Policy page to your website where you can store and present these details.

4) TPS screening - what about phone calls?

Anyone you wish to contact by telephone MUST have agreed to receive marketing or sales calls. From May, you will have to screen the phone numbers of prospects before you ring them – if they're registered on the TPS (Telephone Preference Service) or CTPS (Corporate Telephone Preference Service), you should not call them.

To be on the safe side, it's worth screening all your data just to make sure your contacts are happy to hear from you. To check your data, we offer a TPS and CTPS screening service. We can run a scan, provide a 'Do Not Call' list or we offer a fully managed service for an annual fee.

Our trusted partner TPS Services provide a reliable and thorough screening service, with staff always on hand to provide assistance when required

Feeling overwhelmed?

Our handy infographic will guide you through all the steps you need to take to become compliant with GDPR.

GDPR – Is your business compliant?

We understand that making your business compliant with GDPR can seem an intimidating task, but we're here to help you make the right changes so that you can do business in the correct way.

If you would like more information, or a copy of our infographic, call us on 01983 810505 or email us at