Inspired B2B Marketing
  • Home
  • Our Services
    • Lead Generation
    • Appointment Setting >
      • Phone Call Appointments
    • Long-Term Projects
    • Email Marketing
    • Website Development >
      • Website Packages
    • Event Registration
    • Digital Event Promotion
    • Customer Services
    • Data Cleansing
    • Content Creation
  • About Us
    • Our Experience >
      • Care & Health
      • Technology
      • Education
      • Medical & Cosmetic
      • Engineering and Industrial
      • Commercial and Business Services
      • Agriculture
    • Our People
    • Our Accreditations
    • Testimonials
    • Case Studies
    • FAQ
  • Careers
  • Articles
  • Policies
    • Privacy Statement
    • Cookie Policy
    • Customer Service Promise
    • GDPR Statement
  • Contact Us
    • Request a Quote

Articles

6 GDPR Myths - True or False?

10/12/2018

0 Comments

 
Blue article header image displaying the company logo in the top left and the article headline reading '6 GDPR myths - True of False?'

The General Data Protection Regulation has been in place for just over six months. Most businesses have had time to come to terms with the new legislation and make all of the changes required for GDPR compliance. Even though these businesses have had the time to learn about and implement the necessary changes, there are still many misconceptions out there that are causing businesses to overwork or even underwork themselves in terms of GDPR.

In this short article, we have investigated 6 GDPR myths and taken a look to see if they really are just myths or important aspects of data legislation that you need to be aware of.
 
#1 - GDPR Doesn't Apply to Businesses Outside of the EU – FALSE

This is something that quite a lot of business outside of the EU are still oblivious to. Many people see GDPR as a way to restrict a business’ use of customer data, which of course is true, but what many businesses are forgetting is that the main purpose of the GDPR is to protect personal data belonging to EU citizens. This means if you operate outside of the EU, but you still have both current and prospective clients that live in the EU, you must comply with the GDPR when contacting these clients. Just because you aren't in the EU, does not mean you are safe from fines under GDPR.
 
#2 - Having a Data Protection Officer is Mandatory - FALSE

With GDPR, comes the misconception that every business must appoint a Data Protection Officer. This is not true. Appointing a Data Protection Officer (DPO) is only mandatory under the following grounds:
 
- You are a public authority.
- Your activities consist of large-scale, methodical observation and online behavioural tracking etc.
- Your activities involve large-scale processing of special data categories e.g. criminal conviction data.

 
#3 - Consent Given For The Processing of Personal Data Must be Clear-Cut - TRUE

This is absolutely true. When depending on consent to collect, store and process personal or sensitive information, the consent given must be explicit. There are many ways to obtain this consent, such as email confirmations, written consent or even simple 'I agree' or 'I do not agree' options. However, always ensure that any consent and the format in which it is given is suitable for any and all requirements.
 
#4 - Fines Can Reach €20,000,000 - TRUE

Despite the fact that no one has been given the maximum penalty at the time of writing, the Information Commissioner's Office has the power to impose fines of up to €20,000,000 or 4% of the company's annual turnover, whichever is more. To date, the largest fine given by the ICO. was £500,000 to Facebook for 'serious breaches of data protection law'. The full details are here: https://ico.org.uk/action-weve-taken/enforcement/facebook-ireland-ltd/
 
#5 - Biometric Data Comes Under 'Sensitive Data' - TRUE

Biometric data such as fingerprints, retinal scans, even ID images are all classed as 'sensitive data' under GDPR. However, not all biometric data falls under this category. Biometric data that cannot be used for identification purposes, is not classed as 'sensitive data'.
 
Biometric data that is considered as 'Sensitive Information' include:

- Fingerprints
- Retinal Scans
- Images Used For Identification
- Facial Recognition Data
- Written Signatures
- Voice Recognition Data


and more...
 
#6 - You Can Only Collect Data If Consent is Given - FALSE

Even though GDPR has brought stricter rules regarding data collection and consent, in some cases, you will not need consent to collect or process personal data.
There are six grounds on which you can collect personal data, some require consent, some do not. The six grounds for data collection are:
 
1. To protect the vital interest of the individual - (In order to protect someone's life)
2. Public Interest - (Necessary for the running of a public task e.g. teaching)
3. Contractual Necessity - (Required for contractual agreements)
4. Compliance with legal obligations - (Collecting or processing is required for the compliance of UK or EU legislation)
5. Unambiguous consent (Clear, easy to interpret consent from the individual)
6. Legitimate interest of the data controller - (Your own interest whether commercial or individual, must be balanced with the data subject's interests)
 
Please Note: Despite having a lot of experience with GDPR and being a GDPR compliant company, the information contained within this article should not be taken as legal advice. We have made every effort to ensure that the information in the article is accurate, however, always do your own research and verification before making any changes concerning GDPR compliance. 
0 Comments

Your comment will be posted after it is approved.


Leave a Reply.

    Authors

    On this page you will find all of our informative mini-articles written by our expert telemarketers and other members of our team. 

    Archives

    March 2021
    January 2021
    December 2020
    November 2020
    October 2020
    September 2020
    August 2020
    July 2020
    June 2020
    May 2020
    March 2020
    December 2019
    November 2019
    October 2019
    September 2019
    August 2019
    July 2019
    June 2019
    May 2019
    April 2019
    March 2019
    February 2019
    January 2019
    December 2018
    November 2018
    October 2018
    September 2018
    August 2018
    March 2018
    November 2017
    September 2017
    August 2017
    July 2017

    Categories

    All
    Business
    Data Protection
    Digital Marketing
    Email Marketing
    Lead Generation
    Marketing Tips
    Telemarketing

Office Hours

Monday - Friday: 9am - 5pm

Telephone

01329 277558

Email

enquiries@inspiredb2bmarketing.co.uk

FOLLOW US ON SOCIAL MEDIA!


ICO, Information Commissioner's Office
Picture
Picture
Picture
Picture

Inspired B2B Marketing Limited
Registered in England & Wales: Company Number: 10926744 Copyright © Inspired B2B Marketing - All Rights Reserved - ICO. Certificate Reference: ZA458474
  • Home
  • Our Services
    • Lead Generation
    • Appointment Setting >
      • Phone Call Appointments
    • Long-Term Projects
    • Email Marketing
    • Website Development >
      • Website Packages
    • Event Registration
    • Digital Event Promotion
    • Customer Services
    • Data Cleansing
    • Content Creation
  • About Us
    • Our Experience >
      • Care & Health
      • Technology
      • Education
      • Medical & Cosmetic
      • Engineering and Industrial
      • Commercial and Business Services
      • Agriculture
    • Our People
    • Our Accreditations
    • Testimonials
    • Case Studies
    • FAQ
  • Careers
  • Articles
  • Policies
    • Privacy Statement
    • Cookie Policy
    • Customer Service Promise
    • GDPR Statement
  • Contact Us
    • Request a Quote