WebDirect and GDPR: What it means for you

What is GDPR?

The General Data Protection Regulation (GDPR) is a regulation in European law on data protection and privacy for all individuals within the European Union. It also addresses using personal data in countries outside of the EU. This regulation aims to give control to citizens and residents over their personal data – meaning that some changes may need to be made to your website. 

GDPR aims to ensure that all people are correctly informed before giving consent to corporate data-related activity. This means all businesses need to provide more transparency to their customers by letting them know how data is being collected, stored and used.

For more information, please visit the official EU GDPR page.

What does this mean for your WebDirect website?

Transparency is key. All customers should be able to know what will happen to their data on your website. Here are some guidelines, tips and tricks to help you:

Calibrate and fine-tune your privacy policy

  • Every WebDirect website features a default BookingSuite privacy policy. This policy is fully compliant with European GDPR (General Data Protection Regulation) legislation and automatically translated into all languages available on your WebDirect website.
  • It is your responsibility to make sure that your privacy policy is compliant with your country, state and regional laws.
  • For your personalised privacy policy, it is important to be transparent on how you use and process your users’ data and cookies. In order to create your own custom privacy policy, click here.
    • If you choose to create your own policy, you will be responsible for managing all translations for languages on your website. If you do not add translations, your policy will appear in the language you have written.

Get consent from customers with your cookie policy

  • Cookies can be used to track any user. With GDPR, users of your website need to give you consent for you to track them using cookies.
  • Every WebDirect website features a default cookie notice by BookingSuite. This notice is fully compliant with European GDPR (General Data Protection Regulation) legislation and automatically translated to all languages available on your WebDirect website.
  • For your personalised cookie policy, it is recommended to obtain clear, specific consent from customers to place cookies and track them. Click here for a guide on how to set up your cookie policy on WebDirect.
  • It is your responsibility to make sure that your cookie policy is compliant with your country, state and regional laws.

Ensure compliant contact forms

  • Contact forms can allow you to collect a lot of personal information. Collect only the fields that you actually need to manage your bookings.
  • It’s your responsibility to protect any data collected or processed from your customers.
  • WebDirect has created a consent tickbox which appears below your custom contact form(s) and states that the guest agrees to be entered into possible marketing campaigns by your property. This can also be changed to conform to local regulations.
    • It is your responsibility to ensure that the consent tickbox on your website complies with the privacy laws in your country.
    • You can also customise the consent tickbox text of the form. You can find a step-by-step guide on how to do that in this article
  • A mandatory Captcha has also been implemented for all contact forms in WebDirect. A Captcha is a test used to determine whether a user is in fact a human. This is to reduce spamming.

Clean up your mailing lists

  • If you are going to send mailing lists, make sure to request a double opt-in (e.g. an email with a confirmation link) to ensure consent was obtained by your customers.

Control third-party apps

  • Ensure that the third-party apps you’ve signed up for are also compliant. As a website owner, you are also responsible for third-party apps or services you choose to add to your site.
    • If you are unsure whether they are compliant or not, contact them directly to check.
    • If you use a third-party app that tracks your visitors’ cookies, it is your responsibility to disclose this clearly in your cookie notice.

What WebDirect does with your contact information

  • You can hide or display your contact information. Please find instructions on how to do so here.
  • Bear in mind that your email address will always be in your default privacy and cookie policies and reservation confirmation page, regardless of these settings.

What does GDPR mean for you?

Your Privacy Policy, Cookie Notice and Terms of Service with BookingSuite have also been updated in light of the new GDPR regulations.

It’s important that your WebDirect website is compliant with GDPR. If you have any further questions about GDPR and your website, we recommend that you seek professional advice.