Are you GDPR ready?

General Data Protection Regulation (GDPR)If you run a business, organisation or group, you’re more than likely to be dealing with personal data. The way in which you need to handle this data is changing with the introduction of the General Data Protection Regulation (GDPR), which comes into force on 25 May 2018.

GDPR imposes new rules on companies, government agencies, non-profits and other organisations that offer goods and services to people in the European Union (EU), or that collect and analyse data tied to EU residents.

These new regulations affect businesses of every size and sector, so there are things you need to do to get your business ready.


Josh.biz is reminding all clients that it is their legal responsibility to ensure that their websites operate within UK and EU law. As well as the coming GDPR legislation, other matters are also important such as complying with the EU Cookie Directive and UK legislation requiring different business entities and organisations to make specific information available on their website.

It should be noted that Josh.biz is a web design company, rather than legal specialists (e.g. lawyers and solicitors). Therefore, we recommend seeking professional legal advice where necessary. Be aware that GDPR affects the way you run your business (or organisation) generally and the requirements relating to your website are only one facet of the legislation.

This page is a courteous reminder to all clients of the typical responsibilities which should be considered. These responsibilities lie with yourself, rather than your web designer.

Typical Points affecting websites

CookiesDoes your website use cookies?

If your website is powered by WordPress or collects statistics using Google Analytics, cookies will be used. There are many other reasons why your website may use cookies. If your website uses cookies, it is required that you display a ‘cookie notice’ to users upon arrival at the website, detailing the cookies used.

Should you have a Privacy Policy?

If your business or organisation collects and stores user data, you will be required by GDPR to provide a Privacy Notice on your website explaining this and other related matters. This is typically a web page or PDF document.

Preparing a privacy policy

Form opt-in tick boxDo you have a form on your website, with an option to sign up for a newsletter (or similar)?

If so, GDPR requires that any option to sign up to a newsletter (and other types of communication) must be opt in (with the default set as opt-out). This way the user will need to actively agree to receive such communications, rather than leaving the box ticked by accident. It should also be easy for users to unsubscribe, when desired.

Does your website display the correct information, required by UK law?

Depending on the legal status of your business or organisation various rules and laws apply about the information you are required to display on your website. For example, if you’re running a limited company there is an extensive list of company information which needs to be displayed.

How can Josh.biz assist you?

Our preliminary checking service

Josh.biz is offering a preliminary checking service where we will check the points listed above on your website and provide a report of recommendations. If cookies are being collected by your website we will detail these and their functionality on your website.

A one off fee applies, payable in advance:

  • Single page websites: £10
  • Multi-page websites: £20
  • WordPress powered websites: £35

We can then assist you where possible to meet your obligations and any additional time required for corrective action will be deducted from your service time account.

Privacy Notices

In many cases most businesses and organisations will be required by GDPR to provide a link to a Privacy Policy.

As this is a legal matter, we cannot assist with the preparation of such policies. However, you may wish to consider:

  • Contacting your own legal expert
  • Using the wide range of free resources available online

Legalo Legal (based in Suffolk) are happy to provide a free template (and guidelines) to any of our clients who wish to contact them. They can also assist with any additional questions or legal support you may require.

Visit their website at www.legalo.co.uk or call 0333 355 4900.

Read our related Blog posts

We’ve recently added 3 new blog posts which may be helpful for you to understand your legal responsibilities.

These expand upon some of the points mentioned above and we recommend reading these for further information:

Please contact us if you require any further information or have any questions.

If you require us to carry out a preliminary check of your website, contact us to request this. A PDF invoice will be issued to cover the fee and upon payment, we will enqueue your website for checking.