From May onwards, collecting personal data properly will not just be matter of good user-centered design, but a legally binding regulation. As people responsible for creating customer-centric products and services, we take the notion of consent seriously and would like to encourage everyone to do the same. We’ve been helping companies navigate the new new General Data Protection Regulation (GDPR) landscape and have some advice on how you can prepare your business for all upcoming changes that will improve the user experience.
One of the things the new privacy regulations are trying to solve is the fact that most people don’t read what type of data processing activities they’re agreeing to. Because let’s be honest, terms and conditions are way too long and often written in a way that’s too complicated for most people to understand. With the new GDPR, businesses will have to start being open and clear about what they do with their user’s data (if you haven’t done that already).
A good first step is to look at your data capture forms (e.g. newsletters, webinars, sales requests). If they are designed with the users’ privacy in mind it can be a great way to start building a relationship with your customers. This was also the first step we took as part of a bigger project for Elsevier. If you haven’t designed your forms with your user’s personal data in mind, use this as an opportunity to really make a difference and demonstrate what your business stands for. Don’t try to solely comply with the new regulations.
Here are the basic things to watch out for when you make your own forms both user-centered and GDPR-proof:
Consent to the processing of one’s personal data should be clear, concise and specific. Ambiguous or generic statements are not acceptable any longer, as you can see here: