How Companies Must Respond to GDPR

“The law requires that terms and conditions be written in plain, understandable language, not legalese. Also, firms must give you options to block information from being gathered. If you live in a European Union member states, one change you may welcome. You are likely to see fewer shoe or appliance ads that follow you around the Internet after your online shopping.” [And keep in mind that GDPR affects firms doing any online business in the EU, even if based elsewhere. Thus, U.S. firms operating online in the EU must comply.]

“The new law requires transparency about how your data are handled. And to get your permission before starting to use the data. It raises the legal bar that firms must clear to target ads based on personal data about your relationship status, job or education, or your use of Web sites and apps.”

“In [recent] weeks, Internet users have been receiving a stream of privacy policy updates — grocery store loyalty programs, train services, even apps that parents use for youth soccer all [MUST] set out what data they gather from you. As well as how they handle it. But the deluge of E-mails raises concerns that users agree without taking a closer look.” [Have YOU gotten such an E-mail and just skipped over it?]

“Firms argue that they are being careful to comply with GDPR. But Giovanni Buttarelli, who oversees an independent European Union agency that advises on privacy-related policies, remains unimpressed. He says the wave of privacy policy E-mails pose a “take it or leave it” choice. And that this leaves users thinking they must accept the terms to keep using a service. Rather than letting people choose what information to share.”