• Data Privacy Regulation Take Effect May 25,2018
  • June 13, 2018 | Author: Alan S. Tilles
  • Law Firm: Shulman, Rogers, Gandal, Pordy & Ecker, P.A. - Potomac Office
  • You may have noticed that many of the websites and services with which you interact online have sent out new data privacy notices in the past few days. This is because these companies have personal data about some or all of their customers, and on May 25, 2018, new regulations will take effect which were imposed by the European Union. These new rules, called the General Data Protection Regulation (GDPR), are far-reaching and impact any United States company that does business in the EU or has EU resident customers.

    If you are such a company, it is urgent that you become compliant immediately. Penalties for non-compliance are extensive and significant. While all of the steps necessary to become compliant are beyond what can be supplied in a memo, we would like to provide a quick overview on the privacy notices. Briefly, privacy notices to your customers about how you process their personal data must be:
    • Concise, transparent, intelligible and easily accessible;
    • Written in clear and plain language, particularly if addressed to a child; and
    • Free of charge.
    Here is a link to a document created by the UK's Information Commissioner's Office about properly crafting a privacy notice: https://ico.org.uk/for-organisations/guide-to-data-protection/privacy-notices-transparency-and-control/privacy-notices-under-the-eu-general-data-protection-regulation/.