Most of the information below was found in HubSpot's Create a GDPR Strategy Lesson, as well as other resources, all listed at the bottom of the post for your convenience. This post does not constitute as legal advice and you should always seek legal counsel to see how this regulation will affect your company or organization's specific circumstances.
If your business collects personal data from subscribers, leads, and/or customers, you should have already heard of the General Data Protection Regulation (GDPR) and know that it goes into effect on May 25, 2018. If you haven't heard of the GDPR, read this post to understand the fundamentals and check out the resources to have a better understanding, then contact your legal department to know how this new regulation affects your business, then gather your marketing team and put a plan in place to become compliant with the GDPR.
The GDPR is a regulation by the European Union (EU) to protect the digital personal information of its citizens. HubSpot puts it this way: the GDPR enhances the protection of personal data of EU citizens and increases the obligations on organizations who collect or process personalized data. While most of our audience is in the United States and might not do business directly with countries in the EU, please hear this: The GDPR will affect companies in the US, if they collect personal data of EU citizens, knowingly or not. Companies not compliant with the GDPR that are found to be in violation could face fines up to 20 million euros or 4% of the company's global annual revenue, whichever is greater.