You’re probably sick of receiving emails about GDPR compliance; opt in to this, opt out of that etc.
However, there is a very, very good reason why all these companies are sending you emails right now – they don’t want to get prosecuted after May 25th for not complying with the law. And the fines can be heavy – very heavy.
If you have a data breach, apart from having to pay the fines imposed, you are also required by law to contact all of your clients and inform them of your data breach, what information may have been stolen and the processes that you are putting in place to recover & protect their data in the future. Imagine what impact that could have on your business!
When it comes to your website, if you are an e-commerce site or newsletter signups, online contact forms or any other application that requires a visitor to send personal data to you, then your site must employ encryption during the transmission stage in order to prevent possible data theft.
Pretty much every website uses the bare minimum of a contact form and therefore these sites must protect the data that they are gathering and the easiest way to do this is through the use of and SSL certificate.
These need to be purchased from SSL vendors, usually renewed annually and must be installed on your website via your hosting account.
Once in place, your domain will change from http://www.yourdomain.com to https://www.yourdomain.com. Some browsers do not display the http:// or https:// part of web addresses, so you may have been unaware of this in the past. However, with the GDPR update, so too many browsers have also updated, to show the visitor that a site is secure and the website is taking measures to protect their data.
When visiting a secure, encrypted site, visitors will see something like this in the browser window: