GDPR Compliant Event Registration
It has been hard to avoid hearing about the changes in data protection regulations in Europe. In the full text of the General Data Protection Regulation (GDPR) there are 99 articles setting out the rights of individuals and obligations placed on organisations covered by the regulation. In short - GDPR overhauls how businesses process and handle data. It is significant news for event organisers and will affect how you manage event registration.
GDPR defines responsibilities for Data Controllers and Data Processors:
- A Data Controller is a person who (either alone or jointly or in common with other persons) determines the purposes for which and the manner in which any personal data are, or are to be, processed. If you are an event organiser - you are a Data Controller.
- A Data Processor is any person (other than an employee of the Data Controller) who processes data on behalf of the Data Controller. Event Connections is a Data Processor because we never own or use event data for anything other than the work we do for our clients.
As a Data Controller, you are ultimately responsible for how your event data is used and stored. You need to be really clear with event attendees and explain what data will be collected and what you plan to do with it. You will need to collect as little information as possible and retain it for as short a time as possible.
You need to have an agreement in place with any suppliers that process data for you (like Event Connections) and ensure that their technical and administrative arrangements keep your company GDPR compliant.
Get in touch to receive our gdpr quick guide for clients and find out more about our GDPR compliant event registration solutions.Get in touch >