Ansira Logo

What GDPR Means for Brands

Data collection doesn’t change. Making sure users are okay with it does.

June 19, 2018

The General Data Protection Regulation (GDPR) is a reminder to brands that protecting personal data is a serious business. The global rule, which went into effect on May 25, 2018, governs the way companies process the personal data of European users. Brands that don’t comply can face a hefty fine of up to 4% of global revenue.

For any e-commerce company or brand that sells goods and services internationally, GDPR has an impact on data collection. Ansira breaks down the basics.

Brand Reality
In the aftermath of the Cambridge Analytica scandal, there’s plenty of hype and fervor around the personal data brands collect. However, even with GDPR, brands can still practice the same level of data retrieval they’ve had in the past. The only real difference now is that users have to consent to it — and have to be given greater transparency and the right to have that data removed.

GDPR boils down to these three things:

Consent: Brands are required to provide comprehensive up-front notifications about how personal data is being collected on their websites. Most brands demonstrate their GDPR compliance with pop-up windows that ask users for their consent.

Transparency: Brands have to explain personal data use in ways the average person can recognize and understand. Pages of legalese or confusing wording won’t cut it. The pop-up windows must also tell users where to go on the brand site to find their data and give them the option to delete it.

User rights: Companies must honor user rights to delete personal data. The brand has 30 days to respond and comply. If they don’t, this is where the hefty finds come in.

User Reality
From a data-collection standpoint, users won’t notice any sudden change online, other than the pop-up windows asking for their consent. For users who want to delete their data, the process is like disputing information on a credit report. They simply follow the guidelines set forth on the brand website and then wait the requisite time for the issue to be resolved.

Brand/Agency Role
Brands must be sure their marketing or advertising agency understands the intricate nuances of GDPR as it pertains to user experience, website development, and other relevant online activities. Because most public websites are accessible to European users, GDPR is a reality that must be handled with full compliance.

Although many brands are still in the midst of evolving their policies, time is of the essence. It won’t take long for a company to be slapped with strict penalties for noncompliance, just to make an example. The burden of responsibility is real — and falls on any company that collects personal user data.

About the Author

Courtney Acuff
VP, Marketing and Product Marketing

Courtney is charged with commercializing Ansira’s proprietary technology and with crafting, deploying, measuring, and optimizing data-driven marketing, public relations (PR), and customer engagement campaigns.

More Articles Like This

6 Metrics for Measuring Loyalty Program Success

By Mike Bradley |

6 Metrics for Measuring Loyalty Program Success

Brands with loyalty programs benefit greatly from the data collected. To determine the true success of a loyalty program, consider these metrics.

Read More
5 Steps to a Successful Data-Driven Marketing Strategy

By Trae Clevenger |

5 Steps to a Successful Data-Driven Marketing Strategy

When brands leverage data to really know their customers, they can promote engagement and foster longer-term relationships.

Read More
You Want the Real Truth About Your Customers? Look at the Transactional Data.

By Andy Arnold |

You Want the Real Truth About Your Customers? Look at the Transactional Data.

With this information, brands can hone their strategies, messages, and channels to effectively engage with customers, leaving the guesswork — and costly marketing missteps — behind.

Read More
See All Articles

Get Intel From Ansira

Let’s Start a Conversation

Contact Us