GDPR compliance

Hi Mark,

We have a site with a membership of just under 400 members.
What we intend to do is email those members with an update on the new GPDR rules (i.e the 4 basic rules) then provide them with a link to a simple form that records their acceptance.
It’s basically the same acceptance statement we show on all forms. (i.e ticking here allows us to hold your information in accordance with our privacy policy yada yada yada”

If they choose not to accept the policy change, we delete their details and they can’t be a member. (It’s a group of choir members).

We did toy with just emailing them and saying”by continuing as a member of the choir they consult to us holding their data” etc etc, but decided on getting their explicit answer rather than inferring it.
We don’t envisage anyone not agreeing given they are already members.

As a member of a number of email subscription lists, I’ve already received a number of emails with something similar.
I’ve also seen pop-ups on logging into a website which again asks the similar question. The only reason we chose to email the 400 members is that not all log into the website regularly.

We’ll email all 400 now, then any stragglers a week before the deadline, and again a day before. On deadline day we’ll delete any members who didn’t give us permission to hold their data.
They won’t be able to be a member since we can’t collect fees, have them listed for insurance or royalty rights management etc. PITA but we don’t expect any trouble from our lot as I said above.

YMMV but just to be safe, I’d recommend getting explicit permission from existing members in one way or another.

Chris

Ps. Apologies for typos in first reply. Using the phone first thing in the morning without glasses. Doh!

• This reply was modified 8 years, 1 month ago by shinerweb.