GDPR Compliance for Events
GDPR What?!
Its been hard to avoid hearing about the changes in data protection regulations in Europe. In the full text of the General Data Protection Regulation (GDPR) there are 99 articles setting out the GDPR compliance obligations placed on organisations covered by the regulation. In short - GDPR compliance overhauls how businesses process and handle data. It is significant news for event organisers and will affect how you manage event registration.
Who is responsible for GDPR compliance?
GDPR compliance defines responsibilities for Data Controllers and Data Processors:
A Data Controller is a person who (either alone or jointly or in common with other persons) determines the purposes for which and the manner in which any personal data are, or are to be, processed. If you are an event organiser - you are a Data Controller.
A Data Processor is any person (other than an employee of the Data Controller) who processes data on behalf of the Data Controller. Event Connections is a Data Processor because we never own or use event data for anything other than the work we do for our clients.
In the UK, The Information Commissioner’s Office is the enforcing authority.
GDPR Compliance for Events and Event Data Policies
As a Data Controller you are ultimately responsible for how your event data is used and stored in the lead-up, on-the-day and after your event.
You need to be really clear with event attendees and explain what data will be collected and what you plan to do with it. You will need to collect as little information as possible and retain it for as short a time as possible.
You need to have an agreement in place with any suppliers that process data for you (like Event Connections) and ensure that their technical and administrative arrangements keep your company within the boundaries of GDPR compliance for events.
What else?
There is quite a bit more to it - from securing your IT systems and databases thorough to dealing with complaints or reporting breaches. As an event organiser, you can’t really avoid the responsibilities and so it is worth understanding what they are. We are happy to support clients who are seeking to comply with the legislation and believe that the GDPR compliance legislation is a good thing for individuals and companies alike.
Who we are
Event Connections provide exceptional event registration and delegate management services to event, conference and exhibition organisers.
Get in touch to receive our simple GDPR guide for clients, find out more about our GDPR compliance and how we integrate GDPR with our event registration solutions.