General Data Protection Regulation (GDPR)

GDPR

By | Web Rules | No Comments

What is GDPR?

GDPR stands for General Data Protection Regulation and it is a new data protection law in the EU, which comes into force in May 2018.

The aim of the GDPR is to give citizens of the EU control over their personal data, and change the approach of organizations across the world towards data privacy.

The GDPR provides much stronger rules than existing laws and is much more restrictive than the “EU cookie law.”

For instance, users must confirm that their data can be collected, there must a clear privacy policy showing what data is going to be stored, how it is going to be used, and provide the user a right to withdraw the consent to the use of personal data (consequently deleting the data), if required.

The GDPR law applies to data collected about EU citizens from anywhere in the world. As a consequence, a website with any EU visitors or customers must comply with the GDPR, which means that virtually all websites and businesses must comply.

To better understand the regulation, take a look at the publication of the regulations HERE

 

Should GDPR be taken seriously?

Webmasters have time until May 2018 to comply with the regulations set by the GDPR. The penalty for non compliance can be 4% of annual global turnover, up to a maximum of €20 million.

There are various slabs of penalties according to the seriousness of the breach, which have been described in the FAQ section of the GDPR portal.

Supervisory Authorities (SA) of different member states are going to be set up, with the full support of the law. Each member state may have multiple SAs, depending on the constitutional, administrative and organizational structures. There are various powers that SAs will have:

  • carry out audits on websites,
  • issue warnings for non-compliance,
  • issue corrective measures to be followed with deadlines.

SAs have both investigative and corrective powers to check compliance with the law and suggest changes to be compliant.

The majority of the firms had taken up the GDPR guidelines as their top data protection priority, with 76% of them prepared to spend in excess of $1 million on GDPR. This shows that owning to a substantial presence in the EU, large corporations are taking up the GDPR compliance seriously.

So What Counts as Personal Data?

Any data that can be used to identify a living person directly or indirectly is classed as personal data.

For example:

  • Name
  • Address
  • Email address
  • Social security number
  • Location data
  • IP address

 

What Is Sensitive Personal Data?

Sensitive personal data is a special class of personal data that has to be even more carefully handled. It includes factors such as:

  • Race
  • Health status
  • Sexual orientation
  • Religious beliefs
  • Political beliefs

 

What Rights Do Data Subjects Have Under GDPR?

As explained by the ICO, data subjects have the following rights concerning their personal data:

  1. Information
  2. Access
  3. Rectification
  4. Erasure
  5. Restrictions on processing
  6. Data portability
  7. Objection
  8. Revision of automated decisions or profiling

 

If you are a webmaster you must look for:

(a) Breach notification

Under the GDPR compliance, if your website is experiencing a data breach of any kind, that breach needs to be communicated to your users.

A data breach may result in a risk for the rights and freedoms of individuals, due to which notifying users in a timely manner becomes necessary. Under the GDPR, a notification must be sent within 72 hours of first becoming aware of a breach. Data processors are also required to notify users as well as the data controllers, immediately after first becoming aware of a data breach.

(b) Data collection, processing and storage

Three elements of this: Right to Access, Right to Be Forgotten and Data Portability.

The right to access provides users with complete transparency in data processing and storage – what data points are being collected, where are these data points being processed and stored, and the reason behind the collection, processing and storage of the data. Users will also have to be provided a copy of their data free of cost within 40 days.

The right to be forgotten gives users an option to erase personal data, and stop further collection and processing of the data. This process involves the user withdrawing consent for their personal data to be used.

The data portability clause of the GDPR provides users a right to download their personal data, for which they have previously given consent, and further transmit that data to a different controller.

As a website owner, you first need to publish a detailed policy on which personal data points you’re using, how they are being processed and stored.

it may be wise to avoid data storage altogether in certain cases. For instance, contact forms could be set up to directly forward all communication to your email address instead of storing them anywhere on the web server.

(c) If you are a WordpPress site owner/webmaster Use of plugins – implications of WordPress GDPR compliance

Any plugins that you use will also need to comply with the GDPR rules. As a site owner, it is still your responsibility, though, to make sure that every plugin can export/provide/erase user data it collects in compliance with the GDPR rules.

In a nutshell:

  • Tell the user who you are, why you collect the data, for how long, and who receives it.
  • Get a clear consent [when required] before collecting any data.
  • Let users access their data, and take it with them.
  • Let users delete their data.
  • Let users know if data breaches occur.

Disclaimer. This post is not legal advice. I am not a lawyer!

Source: Awesome Pumpkin Ads

SiteGround Hosting

WordPress

By | Hosting, Uncategorized | No Comments

SiteGround is one of the most popular and highest rated hosting provider in the WordPress community. They provide unique in-house WordPress speed and security solutions to make your site as fast and secure as possible.

They are known for the best 24/7 support in the industry which is why they’re an official ‘WordPress’ recommended hosting provider. SiteGround features include automatic upgrades, built-in WP caching, CDN, one-click staging and GIT version control. They are also one of the few companies offering location specific hosting with 3 data centres in USA, Europe, and Asia.

They are known for their top notch customer support and fast reliable hosting plans. Their WordPress optimized hosting includes everything you’ll need to create and grow a successful blog. Read our complete SiteGround review to find out if SiteGround is the right host for you.

In this detailed SiteGround review, we will put their promises to test. These are the areas we will look into:

  • Performance: Speed is crucial for the success of your website. How fast will your website load with SiteGround?
  • Reliability: Will your website be available 24/7/365 without facing any downtime?
  • Customer Support: Can you count on their customer support?
  • Features: Do they offer all the features and tools you will need to build your website?
  • Pricing: How much it would cost you? Are there any SiteGround deals that can save you money?

Bottom line: Don’t want to read all the details? Let us summarise it for you. We found SiteGround to be noticeably faster and extremely reliable. Their hosting plans are flexible, and their customer support is one of the best in the industry.

That’s why we’ve chosen to recommend SiteGround as one of the best WordPress hosting companies.

Now let’s dive into our detailed SiteGround review, so that you can see how we reached that conclusion and decide for yourself.

About SiteGround

SiteGround was founded in 2004, and since then it has grown into one of the most well known hosting companies.

It is headquartered in Sofia, Bulgaria with offices in 6 locations and data centres in three continents. Today, the company has more than 400 employees and hosts more than 500,000 domains.

WordPress is an award-winning web software, used by millions of webmasters worldwide for building their website or blog. SiteGround is proud to host this particular WordPress installation and provide users with multiple resources to facilitate the management of their WP websites:

Expert WordPress Hosting

SiteGround provides superior WordPress hosting focused on speed, security and customer service. We take care of WordPress sites security with unique server-level customizations, WP auto-updates, and daily backups. We make them faster by regularly upgrading our hardware, offering free CDN with Railgun and developing our SuperCacher that speeds sites up to 100 times! And last but not least, we provide real WordPress help 24/7! Learn more about SiteGround WordPress hosting

WordPress tutorial and knowledgebase articles

WordPress is considered an easy to work with software. Yet, if you are a beginner you might need some help, or you might be looking for tweaks that do not come naturally even to more advanced users. SiteGround WordPress tutorial includes installation and theme change instructions, management of WordPress plugins, manual upgrade and backup creation, and more. If you are looking for a more rare setup or modification, you may visit SiteGround Knowledgebase.

Free WordPress themes

SiteGround experts not only develop various solutions for WordPress sites, but also create unique designs that you could download for free. SiteGround WordPress themes are easy to customise for the particular use of the webmaster.