Strategy

GDPR-friendly Ideas Part 1 of our GDPR overview

6 Jun 2018 Written by James Walters

"Aaaaarrrrr, don't talk to me about GDPR" or "that doesn't apply to us" or "what's GDPR?". All very common responses when I talk to business owners in Automotive. Now that the 25th of May has been and gone - think millenium bug of data - I wanted to tell you what I've learned with some practical advice and 'how to' information in this GDPR overview with regards to being GDPR-friendly and approaching it in a sensible fashion that actually helps improve your business and sales.

 

Learn how to increase responses to cold sales outreach and reduce manual sales tasks...

 

Also, yes, the deadline to become GDPR compliant has been and gone, for EVERYBODY, but, what I'm seeing is that most Automotive companies haven't understood what they should do and mostly haven't done that much or anything at all.

 

Stressed computer engineer working on broken cables in his office

 

I'm not a GDPR expert but I have spent at least 3-weeks solid researching GDPR and coming up with sensible updates, processes, and procedures for our clients so here's your chance to get everything I've learnt in our new blog post series.

 

So, here goes, part 1

 

First, this is not legal advice. It’s just what I think you could do to help become GDPR-friendly based on a lot of research. It’s up to you what you want to do. And, I’m also only considering B2B. If you have questions about what data you store and how to create all the correct legal policies then I'll put my hands up and say take a look here at our GDPR page and book a short consultation, then I'll put you in contact with our GDPR partner that handles that side of GDPR.

Also, GDPR isn’t the death of B2B sales and marketing if you know the different forms of Lawful basis for processing that can be used and you treat your contacts in an ethical way.

 

Considerations to help you be GDPR-friendly

 

  1. You can’t easily differentiate private and business data
  2. You can’t easily know if you’re contacting an EU citizen
  3. You need the ability to capture and audit ‘Lawful basis for processing’ for EVERY contact
  4. You need to give notice and a privacy policy at EVERY data capture point
  5. You need to update ‘Lawful basis for processing’ for EVERY contacts you already have in your systems

 

Questions:

  1. How easy is it for you to manage all the above in your current systems?
  2. When you contact somebody for the first time, you should tell them GDPR-friendly information
  3. Do you have processes so all staff know how to comply with GDPR-friendly requests like (1) unsubscribe, (2) update, (3) request data, (4) delete data?
  4. Do you have a process to comply with your Retention policy?

 

First, lets cover private and business data, and EU citizens

 

Questions I hear a lot are: Is private and business data different? Do I need to comply with GDPR even though I’m not in the EU and/or don’t sell to the EU?

 

My opinion:

There’s no easy way to separate private (home) and business (work) data. And, there’s no easy way to know if your contacting an EU citizen. For this reason, I’d plan to be GDPR-friendly with ALL activity.

 

Some examples:

  1. If a person uses their business email in their personal bank account = private...
  2. You contact somebody in the USA; however, they have a French passport = EU citizen...

 

What to record for EVERY contact

 

  1. Lawful basis of processing contact's data (type of consent being used)
  2. Lawful basis for communicating (what you're allowed to send)

 

All our clients use HubSpot CRM so capturing the above is made a lot easier as they have a central place to capture, track, and update this information. I'll go into more detail about that in future posts.

 

Explaining the different types of ‘Lawful basis for processing’:

  1. Consent (opted-in) - Of most interest to B2B companies
  2. Contract (customers) - Of most interest to B2B companies
  3. Compliance with a legal obligation
  4. Vital interests
  5. A public task
  6. Legitimate interests - Of most interest to B2B companies

 

Here’s the ICOs description of Legitimate interests: if you are a private-sector organisation, you can process personal data without consent if you have a genuine and legitimate reason (including commercial benefit), unless this is outweighed by harm to the individual’s rights and interests. Private-sector organisations will often be able to consider the ‘legitimate interests’ basis in Article 6(1)(f) if they find it hard to meet the standard for consent and no other specific basis applies. This recognises that you may have good reason to process someone’s personal data without their consent – but you must ensure there is no unwarranted impact on them, and that you are still fair, transparent and accountable.

 

That's it for this post. In the next blog posts in this series, I'll walk you through various steps to help you become GDPR-friendly and they'll include:

  1. Updating your privacy policy
  2. Updating your systems
  3. Synchronising data between your systems
  4. Data cleansing of your current contacts
  5. Notice on future outreach
  6. GDPR considerations for future outreach
  7. Processes to make it easy to be GDPR-friendly
  8. Ongoing work to help stay GDPR-friendly
  9. Making it easier to be GDPR-friendly

 

The definitive guide to selling and faster...

About the author

Picture of James Walters

James Walters is the Commercial director at The Tree Group, a Business Growth agency that helps Automotive companies with at least 10 staff and a desire to grow by 15% in the next 18-months.

www.thetreegroup.co.uk LinkedIn
Tags: Strategy

Subscribe by email

Follow Us

Recent Posts

What is your sales process, once you get a lead, referral or a call?
What is your sales process, once you get a lead, referral or a call?
4 Nov 2023
Making Your CRM Work For You
Making Your CRM Work For You
22 Jun 2021
How the sales landscape has been changed by COVID
How the sales landscape has been changed by COVID
28 Apr 2021
Would you like to know more about our new fixed cost sales starter package?
Would you like to know more about our new fixed cost sales starter package?
18 Nov 2020
Case Study - How we won new business for a Tree Group partner using content
Case Study - How we won new business for a Tree Group partner using content
1 Jul 2020

Search By Tags

Try Our Sales Calculator Request a Free Consultation

Subscribe to our mailing list:
Main sections:
Main offers:
 

 

Screenshot 2020-10-15 at 10.19.17

Linkedin Twitter Facebook Rss

 

 
E: sas@thetreegroup.co.uk | T: +44 (0) 1926 942 029
 
Tree Group Limited, 101 Mallory Road, Bishops Tachbrook, Leamington Spa, CV33 9QZ. Company registration number: 09955058 
 
© 2023 by Tree Group Limited
Use of Cookies

We use cookies to provide the services and features offered on our website, and to improve our user experience
Cookies are small files or other pieces of data which are downloaded or stored on your computer or other device, that can be tied to information about your use of our website (including certain third party services and features offered as part of our website)
By clicking "I Accept" you agree to such use of cookies, unless you later decide to disable them
Please note that if you delete or disable our cookies you may experience interruptions or limited functionality in certain areas of the website.

Learn more about cookies

How to delete cookies