Support
European GDPR Privacy Law Compliance
Policy/Procedure on discussing GDPR with Florists
We cannot claim that an eFlorist site is GDPR compliant, and we should not advise florists otherwise. If a florist has concerns about GDPR and wants to make changes to their site, we recommend they consult a legal professional to get appropriate advice for a US business.
If they wish to add a cookie consent message to their site, they can provide the wording for us to include, as we cannot supply the wording for their site.
What is GDPR?
The General Data Protection Regulation (GDPR) is a comprehensive data protection law in the European Union (EU) that came into effect on May 25, 2018. It aims to give individuals more control over their personal data and to unify data protection regulations across the EU.
Key Aspects of GDPR:
Personal Data: GDPR defines personal data broadly as any information that can directly or indirectly identify a person, such as names, email addresses, and IP addresses.
Consent: Organizations must obtain explicit consent from individuals before collecting, processing, or storing their personal data. Consent must be clear, informed, and revocable.
Rights of Data Subjects: Individuals have several rights under GDPR, including the right to access their data, the right to have incorrect data corrected, the right to have their data deleted (right to be forgotten), and the right to data portability.
Data Breach Notification: Organizations must notify authorities and affected individuals within 72 hours of discovering a data breach that poses a risk to individuals' rights and freedoms.
