Cookie Settings

Making your website GDPR compliant

Getting consent

Consent is a key part of GDPR
legislation and it is important for any website that collects personal data to obtain specific permission to use it in the course of their business.
Visitors to your website must understand exactly how you are planning on using their data and must agree to each specific purpose.
Implied consent is no longer sufficient. Consent must be given through a clear affirmative action, such as clicking an opt-in box or choosing settings or preferences on a settings menu.


‘By using this site, you accept cookies’ messages are no longer sufficient. If there is no genuine and free choice, then there is no valid consent. You must make it possible to either accept or reject cookies.


Privacy notice and terms and conditions

You will need to update your terms and conditions on your website to reference GDPR terminology. You'll particularly need to make it clear what you intend to do with the information once you’ve received it, and how long you'll retain this information both on your website and elsewhere. You'll also need to communicate how and why you're collecting data.


Secure Website (SSL)

If your website does not have an SSL certificate, it will be flagged up to visitors as unsafe. This is an aspect of web browsing that aims to protect users and keep personal data safe and secure.
Having an SSL certificate basically means a small green padlock appears at the top of the browser. This informs visitors to your site that it is safe, and personal data is not at risk.

Any website that uses any type of form or asks for information – even a simple contact form or newsletter subscription box – absolutely must have an SSL certificate. It encrypts transmission of the data.

What's Next... 

  • Perform a company data audit
  • Identify and eliminate unnecessarydata
  • Set up a list of processingoperations
  • Review and update internalpolicies and procedures
  • Establish documentation processesfor handling personal data
  • Establish communication methodsfor any customer inquiries on data protection
  • Follow best practice policies andprocedures to ensure data security
  • Define policies and procedures fordisclosing data breaches
  • The right to be forgotten: eraseall of all personal data upon an EU Citizens request
  • Data portability: provide allpersonal data of an EU citizen in a format accessible to them
  • Seeking, recording and managingconsent: processes detailing how you do this

Get your free website review

Simply complete the form below:

Contact us

Skyline Internet Limited
Normanby Gateway, Lysaghts Way Scunthorpe North Lincolnshire DN15 9YG

01724 230411