If you are communicating with your prospects or customers via SMS to individuals in the European Union, compliance with the General Data Protection Regulation (GDPR) is essential. The GDPR, effective since May 2018, is designed to safeguard the privacy and personal data of individuals within the EU and the European Economic Area, establishing rules and processes for businesses to follow in order to protect the interests of European citizens.
The GDPR centralizes regulations related to data protection and privacy, imposing guidelines for businesses operating within its jurisdiction.
Steps to Ensure GDPR Compliance
When engaging in SMS communication targeted at EU citizens, it is crucial to:
Obtain Explicit Consent
According to the GDPR, explicit consent must be obtained from individuals who wish to receive text messages. When collecting phone numbers, it is essential to clearly communicate that the individual agrees to receive text messages.
When using GReminders Public Scheduling pages there is an automatic checkbox to get consent. If you are not using Scheduling and only using GReminders for SMS Client Notifications you must get consent prior through other form collection systems of your terms of service.
Provide an Opt-out Mechanism
Honor the “right to be forgotten” by offering customers a clear opt-out mechanism, such as an opt-out link in your text messages. Opting-out should be free and available at all times.
Typically adding “Reply STOP to opt out” for SMS is recommended. Read More here
- How your organization collects and uses customers’ data.
- Security measures for protecting customer data, both by your brand and any data processors involved.
- Support for customers’ rights to understand and control their personal data.
By following these steps, you can navigate GDPR compliance seamlessly in your SMS communication channels.
If you have any questions please reach out to [email protected]