I’m fairly sure you will, by now, have seen much about the GDPR (General Data Privacy Regulation), and assuming this is true then you are aware that it will almost certainly apply to your business or organisation.
Frankly, there is alot to do to become compliant, and it is no small undertaking. In my blog post ‘GDPR. What it is, what are the penalties, what should you do?‘ I introduced the concept (in fairly plain language) of what the GDPR is, and steps to follow to begin the process of compliance.
This blog post is more in line with what you can do (or what I can offer) in more specific terms of your website, to assist you in that process.
So – here we go…
If like many small businesses you collect data about current or potential customers through your website, then the likelihood is you hold that information on a server somewhere. If this is the case there may be security risks when it is collected, stored and used. Here is a list of what to consider checking on your website to ensure that you can show you are complying to the security of the data you hold: –
- Check that you have installed and are transferring data over an SSL certificate (so when you look at your website address it starts with an https:// and it is coloured green);
- Check that if you collect data, none of this is sent (transported) via email, but rather it is held securely on your server. Very often an email notification is sent to you that you have collected data that may, for example, contain personal information. Email is inherently insecure, so your email notification needs to exclude any data about an EU citizen.
- Ensure you keep your website software up to date – the number 1 way that your website (and data) can be compromised is by not keeping your website software updated.
- Sign up to software or employ security specialists to monitor your website and be notified if there are any potential attacks. This gives you plenty of time to act and respond (and if there is a data breach, to inform the relevant people).
- For even higher levels of security you can install a firewall on your server to further mitigate any possible attacks to your website.
Need help with any of the above? I provide Website Maintenance Plans and am also available to hire – so I am in a great place to assist with the actions you need to take to ensure your business’s website is compliant. Please get in touch with me to discuss these.