Now that the dust has settled and the wave upon wave of GDPR opt in emails have subsided – how have we all learnt to be GDPR compliant?
GDPR swept in a set of new data privacy rules that govern the handling of EU members’ data no matter where it occurs. Companies found in breach of GDPR can be assessed fees up to €20 million, or 4 percent of their annual revenue, whichever is higher. But throughout all the confusion during the run-up, one fact remained incontrovertible: that on May 25, 2018, GDPR would become enforceable. And now it is.
Our team went to a local bar/restaurant and when it came to paying the bill our Director was first refused the choice to pay by cash and when paying my card was told they do not provide printed receipts but emailed receipts instead. Is taking a personal email to send a receipt now violating GDPR? The grey area of retrieving people’s email addresses is plain to see here with no choice of supplying an email address to receive a receipt or not taking a receipt at all – which is not recommended.
The confusion on the staff member’s face when explained to about GDPR is one probably shared by many.