4 minute Intro
For Your Salon
4% of Revenue
Fine for each individual breach in Data Protection Compliance
What does 4% of revenue mean for your business?
Lets work it out.
Your salon makes how much per year?
Your fines would be :
Drag that slide and let’s calculate.
How Do I Become GDPR Compliant?
- You must collect personal data in a fair, lawful and transparent manner
- You must explicitly specify the purpose of why you are collecting the personal
data. And this purpose must be legitimate
- You must limit the amount of information and data you request and collect to what
is relevant and necessary for your processing means
- You must ensure that the information you hold is accurate and kept up-to-date
- You must ensure that the personal data you gather must be kept for as long as it is necessary for processing
- You must guarantee that the personal data is held in a manner that is deemed secure
What Exactly Do They Mean By Personal Data?
Date of birth
In Order To Be Compliant With GDPR, You Must Get Consent From Your Clients
CONSENT = COMPLIANCE
Consent [kuh n-sent], verb – (used without object): to permit, approve, or agree; comply or yield
The information you request and receive from clients must be obtained with permission, freely and with explicit details of what your purpose for acquiring the information will be.
The Opt-In Button
Example Field 1
I am a sample form
Example Field 2
I am also a sample form
Please tick here to sign up to receive updates about products & services, promotions, special offers, news & events from Uppercuts Hair & Beauty Salon
If it is a form that your clients are filling out, it must feature an opt-in box that they can choose to tick, providing evidence that they willingly gave you their Personal Data.
You must provide information on exactly what you plan to do with this information.
And don’t pre-tick the box for them! Consent means that they willingly tick the box.
The Client’s Rights
The Right To Be Informed of the fact that you are collecting and storing their data
The Right Of Access to the data that you have collected on them
The Right To Rectification if they want to correct or change any Personal Data you have about them.
The Right To Be Forgotten and have their Personal Data be deleted from your records.
The Right To Data Portability and the transfer of their information to another business.
The Right To Object To Processing And Direct Marketing, while you still hold their Personal Data.
The Right To Be Notified of any breach of their data with 72 hours.
The Paperless Solution
Based on the requirements laid out by the EU, it has been determined that the most viable, achievable solution is to go digital.
That’s GDPR In A Nutshell