[Marc Stock]

Keep getting these annoying emails from a company in London about this GDPR compliance. Its something about data protection or something, apparently all those that arnt compliant can get fined or something.

Anyway done some searches on the issue and no where can i find the information on exactly what it is or how to check if your compliant or not.

Anyone have any ideas? Is this just bunkum?

[Nick Day]

The impression I get is that it is going to be a major problem for lots of businesses. For instance it seems that you will need permission  in writing  from every one of your customers to be allowed to carry the details you have on them and store either on a computer or any other method.  It may have been designed for large businesses, but it will involve businesses of all sizes.

[Shrek]

Who’s gonna Police it?

[p1w1]

Who’s gonna Police it?

The same people that police facebook, so nothing to worry about 

[Marc Stock]

The impression I get is that it is going to be a major problem for lots of businesses. For instance it seems that you will need permission  in writing  from every one of your customers to be allowed to carry the details you have on them and store either on a computer or any other method.  It may have been designed for large businesses, but it will involve businesses of all sizes.

How ridiculous. So customers that you already have contact with, and are in a working relationship with you have to ask for permission to hold their information?

Is this another bright idea from the EU then?

Thank goodness we are leaving.

[Cookie]

The impression I get is that it is going to be a major problem for lots of businesses. For instance it seems that you will need permission  in writing  from every one of your customers to be allowed to carry the details you have on them and store either on a computer or any other method.  It may have been designed for large businesses, but it will involve businesses of all sizes.

How ridiculous. So customers that you already have contact with, and are in a working relationship with you have to ask for permission to hold their information?

Is this another bright idea from the EU then?

Thank goodness we are leaving.

Actually after all the Facebook fiasco GDPR is a very good idea. It means that you, the individual are in control of the data that the large corporations have on you. This is surely better than them passing on your data to any old Tom, Dick or Harry.

If you use the search function there was a recent post on this.

[Stoots]

I dont have any customer information, if anyone asks its all stored in my head.

Problem solved.

[Anthony Jardine]

Appaenatly you also have to state what you do with there information when there not any longer a customer

I believe tou can include it somewhere on your website , a company policy about data stored and your policy with whom it’s shared and what you do with that data whilst in your care

It will be a logistic nightmare for small companies, It becomes law I think end of May 2018

[Rob.Hall]

I have @ cleaner planner about this.
They are looking into it.

Anyone who has details about clients needs to be aware of regs.

[Pete Thompson]

“Consent” is only one legal basis for processing data, and is a last resort as it’s so difficult to manage.

You can also process data under the “legitimate interest” basis. This means that as long as the data you process can be justified due to a legitimate interest (yours OR the data subject) and would be reasonably expected by the data subject (ie the customer) then it’s permissable, and you do not need explicit consent.

There is also a ‘pursuant to contract’ basis, which will easily cover all window cleaning data processing, as you obviously need to do it to fulfill your contract with the data subject.

Google “GDPR legitimate interest basis” there’s plenty of info about it.

[Marc Stock]

Would be good if we could have some guidelines on where to start.

Nothing makes sense. Its the most arbitrary regulation.

So should i have  GDPR statement of facts on my website ahd bills or what

[Dane]

I’ll see what my better half knows later and let you know Mark, she’s head of a marketing company that works with international clients and obviously Keeps data, I know that’s a different scale to us local windies but she will know more then I currently do and maybe point in the right direction (or I’m as lucky as I usually am take care of it for me 😂)

[Pete Thompson]

I think the biggest impact for us lot will be around the use of 3rd party data processors, such as CleanerPlanner, Aworka etc.  As they are processing data in your behalf, you are responsible for what they do with it, and most importantly, it's security.

As this customer data is held in the cloud, is it encrypted? (GDPR says this is a minimum requirement for cloud-held data)
Is 2-factor authentication used to secure access?

What measures are being taken to ensure it is safe from hackers?  Or deletion (by accident etc)?

[carl stanton]

Lots of things going around about this.

It’s as has been brought out the information that business hold, data, customer name  address and such, on another level, this would not concern us window cleaners,  would D.o.b am done other very personal information.  Has been breached and misused disrespectfully by businesses so hence the reform of this law.

The laws and guidelines have been termed as a ‘living document’ so are  still being refined, a good thing. But makes it difficult to know what action and who by if any.

Software apps I would think  have to be compliant with your data and thus possibly with your customers. Question is how might we need to be compliant even with an app you may well breech good care of data ie print outs, cached information and ensuring you have a plan in place of due care and safety of that.

Subject to understanding and refinement possibly  sole traders, that would and do not pass information on may not need to act any further to comply. But employers, perhaps even sub contractors as I understand maybe need to comply, but please check and verify.

Personally because I can be a little sad and I am dealing  with these matters in a legal capacity for an organisation any way, I am formulating my safeguarding planning and a simple document that customers can sign and have been talking to the right customers as a matter of interest to see what they think.

Ico.org.uk is the agency responsible for taking care of this

Welcome to the most boring response 😂
Disclaimer: please do your own research with headache tablets 😅 with the mindset of being more disalutioned and confused 😐

[Crystal-clear]

So the Ford Mondeo man has 400 customers in his head happy days?

[CleanClear]

Can't see how this is going to apply to the majority of window cleaners. A name, address and a phone number s hardly private data, everyones contacts list in a moblie fone would reveal same sort of info . I've no idea how go cardless etc work, but i'd imagine there could possibly be an issue around taking and passing that data on, but i'd also guess Go Cardless have that angle covered ?

[simon w]

How would having photos of your customers houses posted on cleaning forums and websites fit into these new rules? before and after pressure washing, UPVC cleans etc.

[Don Kee]

https://www.bbc.co.uk/programmes/p065j8lj

[Crystal-clear]

how about door knocking or using canvassers they collect data for people lol will this now hinder that too

[dazmond]

Can't see how this is going to apply to the majority of window cleaners. A name, address and a phone number s hardly private data, everyones contacts list in a moblie fone would reveal same sort of info . I've no idea how go cardless etc work, but i'd imagine there could possibly be an issue around taking and passing that data on, but i'd also guess Go Cardless have that angle covered ?

exactly........

its marc worrying about nothing............