GDPR - anyone working in this area?
Discussion
Bikerjon said:
Only yesterday I was asked by a new customer if I was "fully GDPR compliant". My slightly snappy response was that unless there is a proper recognised accreditation, how can anyone truly say they are fully GDPR compliant? I'm not sure they were too impressed, but it's the truth isn't it?
Yep; you could quote Elizabeth Denham, the Information Commissioner: "We're not going to be looking at perfection, we're going to be looking for commitment."Bikerjon said:
Only yesterday I was asked by a new customer if I was "fully GDPR compliant". My slightly snappy response was that unless there is a proper recognised accreditation, how can anyone truly say they are fully GDPR compliant? I'm not sure they were too impressed, but it's the truth isn't it?
No.You are either compliant or not.
Are you?
PurpleMoonlight said:
Why?
I don't mind them having my data and I bet I am not alone.
Really? I don't mind them having my data and I bet I am not alone.
As social media becomes ever more pervasive, coupled to the development of the internet of things, what do you think is your most valuable asset? What do the likes of organisations who advertise on Facebook think Facebook's most valuable asset is?
Eric Mc said:
I've been getting loads of e-mails from organsations telling me that they have updated their privacy policy. Thanks for letting me know and all but, why are they doing this? What do they think they are achieving?
They don't know, most have no idea what they should be doing, it's as complete clusterf![](/inc/images/censored.gif)
Frimley111R said:
Eric Mc said:
I've been getting loads of e-mails from organsations telling me that they have updated their privacy policy. Thanks for letting me know and all but, why are they doing this? What do they think they are achieving?
They don't know, most have no idea what they should be doing, it's as complete clusterf![](/inc/images/censored.gif)
Bikerjon said:
Only yesterday I was asked by a new customer if I was "fully GDPR compliant". My slightly snappy response was that unless there is a proper recognised accreditation, how can anyone truly say they are fully GDPR compliant? I'm not sure they were too impressed, but it's the truth isn't it?
I would have just replied, "Of course, we respect your privacy and take it seriously." Anything else could get some smart arse or troublemaker making things annoying for you in some way.Looks like some companies are starting to realise that they’ve sent out the wrong message stating that they are deleting your records unless you specifically click to opt in when effectively you’ve already agreed to receiving the odd email. I’m guessing they’ve realised that they’re competitors aren’t slitting their wrists in the name of GDPR so why should they......
Far more emails are now saying that they’ve tightened their policies and procedures with our privacy in mind and they will continue to regard you as a customer that wants a service unless you use the link to opt out, not in.
Far more emails are now saying that they’ve tightened their policies and procedures with our privacy in mind and they will continue to regard you as a customer that wants a service unless you use the link to opt out, not in.
"We are required by law to send this out today" relating to the new PP. BS, right?
With the worry from businesses over what's what, I have been replying to the every PP/GDPR email this evening saying that they've done it wrong and need to find a new GDPR consultant.![biggrin](/inc/images/biggrin.gif)
Since they're wasting my time, they can waste more time reading the ICO website again wondering if they've done it wrong or not.
With the worry from businesses over what's what, I have been replying to the every PP/GDPR email this evening saying that they've done it wrong and need to find a new GDPR consultant.
![biggrin](/inc/images/biggrin.gif)
Since they're wasting my time, they can waste more time reading the ICO website again wondering if they've done it wrong or not.
TTmonkey said:
Looks like some companies are starting to realise that they’ve sent out the wrong message stating that they are deleting your records unless you specifically click to opt in when effectively you’ve already agreed to receiving the odd email. I’m guessing they’ve realised that they’re competitors aren’t slitting their wrists in the name of GDPR so why should they......
Far more emails are now saying that they’ve tightened their policies and procedures with our privacy in mind and they will continue to regard you as a customer that wants a service unless you use the link to opt out, not in.
As long as they can 100% without a doubt, definitely, confidently with no uncertainty, guarantee that all of the people on their list definitely 100% certainly did opt to receive regular messages. And they can prove it. (Unlike a couple of businesses for whom I am certain I did not sign up to regular updates/newsletters but received their updated PP announcement!) And in that case, no need to spam your potential customers with the same message that every other fFar more emails are now saying that they’ve tightened their policies and procedures with our privacy in mind and they will continue to regard you as a customer that wants a service unless you use the link to opt out, not in.
![](/inc/images/censored.gif)
Europa1 said:
Really?
As social media becomes ever more pervasive, coupled to the development of the internet of things, what do you think is your most valuable asset? What do the likes of organisations who advertise on Facebook think Facebook's most valuable asset is?
By the same logic, organisations that advertise on TV think TV's most valuable asset is the viewers. So we should be paid to watch TV - we are the asset!As social media becomes ever more pervasive, coupled to the development of the internet of things, what do you think is your most valuable asset? What do the likes of organisations who advertise on Facebook think Facebook's most valuable asset is?
It doesn't work that way. Facebook and Google etc. have generated value by aggregating user behaviour. The value is in the aggregation, the processing and the analysis, not in the individual histories of users. They make money by acting as brokers to millions of businesses. You cannot sell your data to millions of businesses because you don't have the infrastructure to do so.
This is a deliberate confusion by some commentators. They want to overthrow the dominance by corporate America in this space, which involves cutting off the air supply to those companies. In that sense GDPR has been hijacked - for some it's not just about the security and audit of data your data, but about controlling the market of data itself. It's a very statist view of the world. This is not for the benefit of the consumer at all.
Europa1 said:
Really?
As social media becomes ever more pervasive, coupled to the development of the internet of things, what do you think is your most valuable asset? What do the likes of organisations who advertise on Facebook think Facebook's most valuable asset is?
I don't use social media.As social media becomes ever more pervasive, coupled to the development of the internet of things, what do you think is your most valuable asset? What do the likes of organisations who advertise on Facebook think Facebook's most valuable asset is?
I do use an ad blocker.
williamp said:
Our NHS trust is GDPReady. Quite a relief as I am the person responsible! An epic amount of policies and procedures re written, contracts agreed and long hours.
Great so loads of dough spent but any lives saved?? any illnesses treated? what a waste of time effort and money... STANDARD NHS. I occasionally give seminars.
At the end I hand out feedback forms where individuals write their contact details if they would like to discuss their personal situation in more detail. This information is only uploaded to a database if the individual becomes a client otherwise the form will end up in the shredder.
I’ve done some digging but am still not 100% what sort of action I need to take.
Anyone perhaps have some insight?
Many thanks
At the end I hand out feedback forms where individuals write their contact details if they would like to discuss their personal situation in more detail. This information is only uploaded to a database if the individual becomes a client otherwise the form will end up in the shredder.
I’ve done some digging but am still not 100% what sort of action I need to take.
Anyone perhaps have some insight?
Many thanks
Gassing Station | Business | Top of Page | What's New | My Stuff