The new general data protection regulation (EU GDPR) has a direct impact on marketing practices, including email marketing. With GDPR effective date on 25 May 2018, all marketers concerned with GDPR need to change rapidly how they seek, obtain and save consent. Mailjet being an Email Marketing actor, we gathered precious information for you to create this GDPR toolkit. Let our guide help you to understand, prepare and comply to the European regulation before the due date, and even after.
Email marketing under GDPR essentially means that, as an email marketer, you need to collect freely given, specific, informed and unambiguous consent (Article 32). To achieve compliance, you have to adopt new practices:
Concerning the impact of EU GDPR on B2B and B2C in 2018, the new European reglementation applies to both business methods. Neither soft opt-in nor soft opt-out approaches are allowed, at Mailjet we recommend you to use double opt-in to align with GDPR compliance requirements. Along with how you achieve consent in your business, you should also take care about your third party data (more information on How to work with Third Party Solution Provider under GDPR?).
Profiling is also under the scope of the regulation: from its clear definition to the subjects’ rights, GDPR has strict requirements you need to comply with, or you are at risk of a fine.
Even though the European regulation changes the marketing landscape, it is still possible to do email marketing. To help accomplish your email marketing objectives, we have elaborated this GDPR checklist of measures for your reference:
a – Take an audit of your current database.
b – Know your contacts and how you acquired them.
c – Review and disclose your data practices.
d – Look at your upcoming initiatives to ensure compliance now.
More information on GDPR and Consent.
The general data protection regulation doesn’t only apply to the data collected on its effective date, May 25th 2018, but also to the data gathered before. Does the consent record of your existing contact lists proves that you have clear authorization to send email marketing campaigns to each contact? Any ambiguous records would mean obtaining new and expressed permission from the outdated contacts, in order to send email marketing communications properly.
While certain purchased lists with clear affirmative statement of consent within the original subscription may be allowed under GDPR, Mailjet strongly recommends against this in every way possible for deliverability concerns. What is permitted may not be good for your email strategy.
Every email marketers should ensure a proper way for their contacts to unsubscribe, in order to be compliant for the EU GDPR. The unsubscribe process under GDPR needs to be clear and simple. You should include the visible unsubscription link in each marketing email where your subscriber can:
Allowing your contacts to easily subscribe and unsubscribe are equally important in achieving compliance with EU GDPR.
As the new European regulation impacts profiling, you must comply to its requirements in order to send personalized and targeted emails. More information on our dedicated page for GDPR and Profiling.
Check out the email marketing checklist to make sure you’re working with 3rd party providers correctly as your business transitions to GDPR.