On 25th May 2018, the General Data Protection Regulation (GDPR) came into force across Europe.
The new legislation was designed to strengthen Europe’s data protection laws, and give European citizens greater control over their personal information.
While undoubtedly a good thing for the individual, GDPR has meant that many B2B marketers have suffered sleepless nights. And not without good reason. Digital marketing is changing!
The regulation has a particular emphasis on email marketing, and how companies can and can’t use customer data. But is this concern from B2B marketers justified?
The GDPR wasn’t drafted to make email marketing harder, but to provide extra protection for consumers and the businesses using their data.
In this article, we offer our advice for email marketers to make sure their outbound emails are always GDPR compliant.
A year before GDPR was implemented, the Information Commissioner’s Office (ICO) published draft guidelines on consent.
The guidelines presented seven amendments to the way companies must collect, manage and store personal data. These amendments impact on B2B marketers and how they carry out email marketing campaigns.
Asking for consent should be separate from other terms and conditions, so it’s clear for individuals to see what they’re signing up to.
Under GDPR, pre-ticked boxes are not a valid form of consent. Clear opt-in boxes should be used.
If personal data is to be used in a variety of ways, the ICO recommends that organisations ask for separate consent to each. The idea is to give the data owner as much control as possible over their data and how it’s used.
Individuals must be told who your organisation is, and the names of any third parties that their data will be shared with. Any organisation that the data will be shared with must be named.
The following information must be recorded and stored: what the individual has consented to; what they were told at the time; and the method of consent.
It should be easy for individuals to withdraw their consent. Organisations must put in place simple and fast methods for withdrawing consent. Individuals must be told about their right to withdraw consent.
Consent must be freely given (not forced) by individuals.
By sticking to these seven rules, it should be easy for B2B marketing teams to conduct email marketing campaigns in a GDPR-compliant way.
After all, the punishments for non-compliance can be severe. The legislation states that any company in breach of the rules will be fined 4% of their turnover, or €20 million – whichever is greater!
As mentioned above, the GDPR was not designed to stop B2B marketers from sending emails.
Under the legislation, organisations can lawfully process personal data as long as they can demonstrate “legitimate interest” (i.e., having a clearly defined and necessary reason for processing that data).
So B2B marketing teams can continue sending email campaigns, as long as they state their reasons for doing so.
With that in mind, here are 5 top tips that will make sure your marketing emails are always GDPR compliant:
One of the biggest concerns for B2B marketers is that the GDPR allows consumers to opt-out of email lists, or have their data erased entirely. However, smaller lists needn’t be a bad thing. Do you really want to keep contacting customers who aren’t interested in your product, or are unresponsive to your message? Smaller lists can lead to increased engagement and deliverability rates, as your emails are sent to only the most interested prospects or customers.
Consider segmenting your customers into even smaller lists (you could sort by age, gender, location etc.) and try adapting your email content to meet the needs of those different groups.
Always explain in the body of your email why you are reaching out, and why your offering to relevant to that prospect. This will ensure that your email marketing is always compliant with GDPR, as you have clearly demonstrated legitimate interest. The prospect should be made aware of why you have targeted them. Here are some examples of how you can explain a legitimate interest in your emails:
To stay GDPR compliant, only collect data if it’s strictly necessary to do so. A good way of thinking about this is to ask yourself: am I going to use this data for a specific reason? If not, then don’t collect it!
So, if you don’t plan on calling a prospect, don’t ask them for their phone number! If you don’t plan on sending a letter to your prospect, then don’t ask them for their mailing address! Make sure the data you collect is necessary and relevant to your business.
When it comes to opt-ins, transparency is the name of the game. Here are some ways to maintain GDPR compliance with your opt-ins:
Opt-outs are just as important as opt-ins. Here are some tips for making sure your opt-outs are always GDPR compliant:
Of course, it almost goes without saying – if someone wants their data deleted, then you must delete their data!
Cognism is an innovative SaaS start-up that provides GDPR compliant data to power sales and marketing campaigns. Our mission is to become Europe’s leading GDPR-compliant data company.
Since data is at the core of our business, we have taken the arrival of GDPR very seriously, and we have worked hard to ensure compliance in every part of our business. We are proud to share our experience with others.
These are the ways in which Cognism is GDPR-compliant:
Cognism believes that GDPR represents new opportunities for B2B marketing, rather than a challenge. We want to help others understand the legislation, and how it can be used to power effective email marketing in a post-GDPR world.
read more ›
read more ›
read more ›