GDPR Website Compliance Starter Package
Let's Get Started
Thank you for your payment. Let's get the show on the road!
HERE'S HOW TO GET STARTED:
Step 1 - Get familiar with GDPR (what, why, and how):
This post provides a plethora of information about the GDPR regulation and includes multiple resources to help you with compliance. Decide which route you'll take to create or update your policies.
Step 2 - Gather your information:
This is the majority of the work you'll need to do.
Sorry, we can't do this for you. You'll find as you go through our instructions, there is information about your business, the services you use, etc. that only YOU will know. Not to worry, we're walking you through each step to make it as easy as pie.
Have you already compiled all of the information about the services your website and business uses to collect or process information (including links to the privacy policies of those services)? Make a list of all of the ways you are tracking, collecting, processing, or storing data in your business (not just on your website).
Your data processors are services like Google Analytics, Google Fonts, your web host, WordPress, your contact form service, PayPal or other credit card processor, accounting software, your email marketing service, Facebook Pixel, Google or Facebook ads, social media, appointment scheduling service, a heat map service like Crazy Egg, your project management or accounting software – everything. You need to know WHO the processors are (along with links to THEIR privacy policies) to be able to provide the correct information to your legal counsel, into the policy generator (privacy and/or cookie) you'll use, or any other way you'll create or update policies with GDPR required information.
If your website was built by The Essential Website, these are services (data processors) we use on every website:
- Google Analytics
- Google Maps (if applicable)
- iThemes Security
- Rocketgenius (Gravity Forms)
- Google Fonts & Typekit
- Yoast SEO
This may or may not be a complete list of your unique site so, be sure to include any other services used for the functionality of your site (example: Ecwid, MailChimp, etc.). You are welcome to email us if you have questions about any additional services.
This portion of the project may be the most time consuming as it will take work on your part to research which services you use to run your business.
Step 3 - Create or Update:
CREATE: We encourage you to read through the resources in the post in Step 1 and consult your legal counsel to decide which options are best for you. Scroll down to the section of the post entitled "Get Help with Compliance" for assistance with creating policies.
If you're a DIYer (not using legal counsel), we suggest these options:
- TermsFeed which has a nice wizard/generator that will walk you through each question (be sure to either download and/or email yourself the completed policies when finished - we suggest both to be safe),
- iubenda, which is what we used for our Privacy and Cookie policies (we used the Pro version),
- or the Premium version of the complianz plugin*
(The post above provides some information of the different features of the free and paid versions.)
*NOTE: If you will be using any version of the complianz plugin, we can assist in the installation of the plugin on your website if needed. Once installed, the wizard will walk you through each question/step. You'll be able to use the information you gathered in Step 1 to create your policies. We'll get you started if you need a little help.
Now onto the next steps...
Once you've completed everything, you'll share this information with us. Sharing instructions are in the next step below.
Reminder: Policies are only one part of working toward GDPR compliance. We are not legal or GDPR experts. It’s up to you to find the best solutions for your business, get assistance from a qualified legal professional, and ensure that full compliance within your business and website is met correctly.
Share information securely by using LastPass
The most secure way to send us your login information is via LastPass. Email or texting is NOT secure.
- If you do not have a LastPass account, you can create a FREE account here. If you need help creating an account and getting started, visit the LastPass Help Section.
- After creating your account, LastPass will have you download the software and then install the “browser extension” on your computer. We definitely recommend doing this so that when you visit sites that require you to login, you can login automatically or easily access your login information. If this is confusing, we encourage you to create your account, follow the instructions and then let us know if you are stuck.
- After the installation is complete, you’ll login with your username and password (look for the red and white asterisk or 3 horizontal dots icon in your web browser). Once logged in, it will ask you if you want to “Go Premium,” and that’s totally up to you, but not necessary. If you click on the asterisk or 3 dots icon again (after logging in), you’ll see that you can add a site to your vault, generate secure passwords, and view your vault.
- Open your vault and add the sites you'll need to share with us. We will need your login information for the following:
- If you've purchased the Premium version of the complianz plugin, we'll need the login information you created (if any).
- Your website (if we don't already have it).
- Your email marketing service (if we don't already have it).
- Next, share the login information for the sites shown above with us. Here’s how:
Go into your vault and hover over the site you’ll be sharing with us. When you hover, you’ll see 3 icons to the right – Edit, Share, Delete. If you want to only share one site with us, click “Share,” enter our email address (firstname.lastname@example.org), and click the box next to “Allow Recipient to View Password” (we’ll need to view your passwords in order to access your accounts). If you want to share multiple sites with us, check the boxes next to the sites you want to share with us and an “Actions” dropdown will appear at the top of the page. Choose “Share” from the dropdown, then enter our email address (email@example.com). You’ll know it was a successful share if you get a “Success” message at the top. Click here for help sharing your sites in LastPass.
TIP: If you've never used LastPass, you'll love it! Now, when you login to websites or create new usernames and passwords, LastPass will ask you if you want to save the site (as long as you’re logged into LastPass via the extension). Definitely save your sites (it makes your life so much easier than having to remember tons of usernames and passwords). You can also save other information in LastPass like secure notes. We highly recommend that you check out all of their features when you have a couple minutes.
Send us your content and other information
- The URLs to any page where opt-in areas are located. This can also be names of pages (i.e. home page, after blog posts, etc.).
- Your updated or new Terms & Conditions (if not already on your website and is a something you also created).*
- If you've purchased the Premium version of the complianz plugin, we'll need to obtain the zip file of the plugin to install on your website (either by emailing it to us or by sending us the login information to your complianz account).
For your convenience, use this Google form to give us your information.
*NOTE: If you don't have these pages on your website, we'll create for you.
IMPORTANT: We are not reviewing (and are not qualified to review) your policies for compliance. We will use the information you send us to complete your project. You are responsible for all compliance.
Once we receive all of the information above, we'll get started and will email you with any questions. Once complete, we'll email to let you know.
In the meantime, if you have any questions or need help, please do not hesitate to email us at firstname.lastname@example.org.