If you are a client of ours and struggling with what you need to do for GDPR compliance, then you may find this guide from our Daughter business YogaTax of use
Unless you have played fast and loose with data before, you probably don’t need to be sending out opt in / opt out emails, however fashionable they are, or editing your mailing and contact lists, especially if you use something like Mailchimp or ConstantContact with opt out links.
You probably do need to:
- Self Assess whether you need to register with Information Commissioners Office (Data Protection and GDPR rules still apply if you don’t)
- Carry out a data audit – theres a simple template in the link above
- Update your privacy policy – again, theres a simple template in the link above