The General Data Protection Regulation (GDPR) is a regulation in European law on data protection and privacy for all individuals within the European Union. It also addresses using personal data in countries outside of the EU. This regulation aims to give control to citizens and residents over their personal data – meaning that some changes may need to be made to your website.
GDPR aims to ensure that all people are correctly informed before giving consent to corporate data-related activity. This means all businesses need to provide more transparency to their customers by letting them know how data is being collected, stored and used.
Transparency is key. All customers should be able to know what will happen to their data on your website. Here are some guidelines, tips and tricks to help you:
If you choose to create your own policy, you will be responsible for managing all translations for languages on your website. If you do not add translations, your policy will appear in the language you have written.
Cookies can be used to track any user. With GDPR, users of your website need to give you consent for you to track them using cookies.
Every WebDirect website features a default cookie notice by BookingSuite. This notice is fully compliant with European GDPR (General Data Protection Regulation) legislation and automatically translated to all languages available on your WebDirect website.
Ensure compliant contact forms
Contact forms can allow you to collect a lot of personal information. Collect only the fields that you actually need to manage your bookings.
It’s your responsibility to protect any data collected or processed from your customers.
WebDirect has created a consent tickbox which appears below your custom contact form(s) and states that the guest agrees to be entered into possible marketing campaigns by your property. This can also be changed to conform to local regulations.
It is your responsibility to ensure that the consent tickbox on your website complies with the privacy laws in your country.
You can also customise the consent tickbox text of the form. You can find a step-by-step guide on how to do that in this article.
A mandatory Captcha has also been implemented for all contact forms in WebDirect. A Captcha is a test used to determine whether a user is in fact a human. This is to reduce spamming.
Clean up your mailing lists
If you are going to send mailing lists, make sure to request a double opt-in (e.g. an email with a confirmation link) to ensure consent was obtained by your customers.
Control third-party apps
Ensure that the third-party apps you’ve signed up for are also compliant. As a website owner, you are also responsible for third-party apps or services you choose to add to your site.
If you are unsure whether they are compliant or not, contact them directly to check.
If you use a third-party app that tracks your visitors’ cookies, it is your responsibility to disclose this clearly in your cookie notice.
What WebDirect does with your contact information
You can hide or display your contact information. Please find instructions on how to do so here.
Bear in mind that your email address will always be in your default privacy and cookie policies and reservation confirmation page, regardless of these settings.