Tending your site… While you do what you love…

GDPR & What I’m telling my clients

GDPR In the real world in real words

I am not an attorney, or a specialist in anything you are reading below. Use this information at your own risk.

If you have anyone from the EU that you email, GDPR applies to you. If you have less the 250 employees and don’t have a high percentage of clients in the EU the odds you would have to deal with a fine due to compliance is pretty slim. The odds you might have to deal with complying with it however are higher so you should put a system into place. Really it’s a good idea for all your contacts and customers for you to be transparent and for you to be clear about how and why you are emailing them, or collecting their information, and in a nut shell that’s what GDPR does.

What you need to do…

Setup a Privacy Policy that is clear about what you collect, and how long you hold, as well as what you are doing with the data.

You will need to know where any information collected is being collected & being stored, this includes:

Address books




Lists (both on paper & in a computer)

Who you are using to process your payments.



Anything anywhere that could be collecting any form of data on an individual.

Company/organization name

Who are you. What is your business name.

Shari Lynn Smith

Details of the business

What exactly is your business.

I provide assistance to small businesses for their tech, web, and customer support.

What information you collect and the basis for collecting it. What you do with the data (including who else gets access).

This is where it can be a bit complicated, but basically you need to break down what/why for each and every way you are collecting data. Cookies, Names & Information for orders, Data for your newsletter. You need to explain this for all the different ways in which a persons data might be collected. What other organizations are collecting data on your behalf, and links to their privacy policies.

How you are safeguarding & the security of the data

Where and how is this information safe guarded from being stolen.

GDPR Rights

The GDPR provides the following rights for individuals:

The right to be informed
The right of access
The right to rectification
The right to erasure
The right to restrict processing
The right to data portability
The right to object
Rights in relation to automated decision making and profiling.

That’s all the basics below are additional posts where I go into the how to do these things.

My own Privacy Policy & Terms of Use

All the information I’ve included in these post came from reading through the following websites and posts.


Comments on this entry are closed.

Privacy Preference Center

Close your account?

Your account will be closed and all data will be permanently deleted and cannot be recovered. Are you sure?