EU GDPR, Cookie Consent, General Data Protection Regulation

What is the EU GDPR?
 
The General Data Protection Regulation (GDPR) (EU) is a regulation in EU (European Union) law on data protection and privacy for all individuals within the European Union (EU) and the European Economic Area (EEA). It also addresses the export of personal data outside the EU and EEA. The GDPR aims primarily to give control to citizens and residents over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU.
 
EU GDPR Official Site
European Commission - GDPR Web Site:
 
European Commission - Business Guide
The European Commission has written a simple guide "Seven Steps for Businesses to Get Ready for the General Data Protection Regulation".  You can download your own copy using the link below.
 
GDPR Cookie Consent Notification
As part of the compliance with GDPR, you may wish to add a "Cookie Consent Notification" on your web site.
This informs site visitors that your site uses cookies and provides a link to your privacy policy.  Once someone acknowledges the notice it will disappear.  It will not be shown to the visitor for another year.  Note that if they use different devices they may need to acknowledge on each device.
 
Frequently Asked Questions
 
How can I make my site compliant with these regulations?
Answer: You should review the resources provided above.  You may want to update your site's privacy policy and terms and conditions.  You should consult with your attorney or business adviser regarding wording to use in your privacy policy and terms and conditions.  You can review other sites to see how they've addressed GDPR in their privacy policy and terms and conditions.
 
My business is US based.  Does this matter to me?
Answer: It may.  If you have customers in the EU, you may want to review your compliance. You may want to update your site's privacy policy and terms and conditions.  You should consult with your attorney or business adviser regarding wording to use in your privacy policy and terms and conditions.  You can review other sites to see how they've addressed GDPR in their privacy policy and terms and conditions.  If you do not have any EU based customers this may not matter to you but you should always consult with an attorney or business adviser for any questions regarding your terms and privacy policy.
 
What countries are part of the EU?
Answer: The EU countries are: Austria, Belgium, Bulgaria, Croatia, Republic of Cyprus, Czech Republic, Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden and the UK.
 
If the UK is exiting the EU, does it still apply to UK businesses?
Answer: Yes - the UK is technically still part of the EU (as of May 2018) and intends to incorporate GDPR into its own laws after existing the EU ("Brexit").
 
Must I remove the use of cookies from my website?
Answer: No.  The GDPR does not require this.
 
Will you write my privacy policy and/or terms and conditions for me?
Answer: No.  We do not provide legal advice and are not authorized to do so.  Please consult with your attorney or business adviser.