Check the toggle button below if you use. Your guidelines will update accordingly.
You may have been hearing a lot about General Data Protection Regulations (GDPR) lately. And with good reason. It’s a big undertaking that has a significant impact on businesses all over the world. We’ve been hard at work ensuring you’re protected as our customers, and are taking additional steps to ensure you’re prepared to serve your own customers in this new GDPR reality we’ll all soon be living in. In fact, if you have a single customer (or prospect) based in the European Union (EU), this may impact you. Don’t panic. We’re going to help you get prepped.
Here’s the gist: from a very high level, this is the EU’s initiative to update outdated laws that protect users and their data. In essence, it gives EU residents more authority over who is using their data and how. And rest assured that as GDPR laws evolve and become even more defined, we’ll stay informed and current in our own practices as well as the features we extend to you.
The more detailed description of GDPR can be found here.
We’re just going to come right out and say it. GDPR is complex stuff. But we’ve been preparing in an effort to make it an easier process for you, adding features and campaigns to help you automate your GDPR compliance as much as possible.
This guide isn’t meant to explain the entirety of the GDPR articles. It’s meant to make it easier to be GDPR-compliant within the scope of the Keap product.
Now for the disclaimer, and it’s a big one...
DISCLAIMER: We can’t interpret the law for you. We’re not sanctioned legal representatives. However, we’ve done our best to make a complex topic more understandable and actionable for you. Please consult your legal advisor.
That said, let’s dig in and get to know GDPR.
We could probably spend a long time waxing poetic about this. But what fun is that? Instead, let’s just make these roles and responsibilities clear.
There are three roles in any data-related relationship:
Here’s a hypothetical scenario to help define each...
You are a customer of Keap and utilize us as your data processor. We are responsible for processing and safeguarding your customers’ data.
Because you actively use our platform and enter client data, that makes you the data controller. Let’s imagine you have a customer in Italy named Liliana. She’s your data subject, and she relies on you to honor her requests regarding what, how, and when you process her data.
Remember Liliana because she’s going to come back into play when we start defining the different articles of the GDPR.
We’ve provided functionality to help you ensure the Keap portion of your business is GDPR compliant. The functionality will be ready on 22 May 2018. You’ll see action items that indicate steps to take inside of your account in the column titled, “Your Keap Checklist” after the 22nd.
There are other steps you’ll want to take outside of your Keap account to prepare yourself for GDPR compliance. Look at the column titled, “Additional Actions” for those recommendations.
Speaking of recommendations, this is where we remind you once again about the giant disclaimer we called out at the beginning of this guide. We can’t interpret the law for you. These are simply suggestions for what you can do within your account to prep for GDPR as well as some additional (non-sanctioned) recommendations.
Hopefully the step-by-step instructions for each of the checklist items will help you take care of preparations for GDPR within your Keap account. We know this is a complex topic and you’re likely to have many questions. Please feel free to browse these resources to dig a bit deeper.
And of course, we’re always standing by to support you, especially as we all tackle sweeping changes like this one. If you don’t succeed, we don’t succeed. Please contact us if you need additional guidance or support.