In addition to requiring businesses to clearly state to data subjects how their personal data will be used, article 7 of The General Data Protection Regulation will require them to gain consent to process their data, and provide an easy way for data subjects update their preferences or revoke consent entirely. Illegally processing personal data can come with heavy fines - upwards of €20 million or 4% of your company's annual global turnover.
Acquiring and tracking consent properly is vital for compliance with article 7, but also important for triggering other GDPR related workflows. In fact, affirmative consent, revoking consent and article 17's right to erasure which states, "...data subject shall have the right to obtain from the controller the erasure of personal data concerning him or her without undue delay..." will be the source of the majority of a business's day-to-day GDPR activities.
With constant news about data privacy hacks and misuse of personal data consumers are certain to take advantage of their new control. This means comprehensive GDPR consent management and compliance should include the ability to trigger scalable automated workflows.
PactSafe Legal Operations Consultant, Kyle Robbins JD is hosting a webinar on April 18 at 3pm EST where he will take a closer look at article 7 and what a successful and scalable consent management looks like.
Webinar highlights include:
How consent is changing under the GDPR
How to determine if you need to re-acquire consent—and act on it
Best practices for proving consent
How to build scalable GDPR compliant consent workflows