The GDPR permission fields behave just like the other fields in your signup form, so you can use the information they collect to build segments and filter your contacts based on who has—or who hasn’t—checked the appropriate box and opted into receiving a certain type of communication from you.
Send a re-permission email to your existing list
If you’ve previously obtained consent from your contacts in a manner that complies with the GDPR, there’s no need to ask for their permission again. But if you’d like a fresh bill of consent from any of those contacts to demonstrate that you’re in compliance with all of the new law, you can send a re-permission email to your list.
We’ve created a new template (along with editable suggested language) to help simplify this process for you, and if you need additional tips, we’ve got you covered.
Mailchimp is entrusted with the data of millions of people, and it’s critical that we preserve that trust by protecting the information we process.
- We’re certified to the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework, so you can legally transfer contact data from the EU to Mailchimp.
- We offer a number of security tools that you can implement to add extra layers of protection to your account, including two-factor authentication (2FA). We recommend that all Mailchimp users turn on 2FA—and we’ll even give you a discount on your account when you set it up.
The GDPR provides individuals with expanded rights regarding the use of their personal data, including the right to request its deletion. And with Mailchimp, it’s quicker and easier to address data requests from your contacts—there are no cumbersome processes or long wait times while someone else handles the requests for you.
Here’s how we’re helping you manage your contacts and their information.
- Record consent: Our new GDPR-friendly forms will take a snapshot of the form version when each person signs up—along with the information they provided on the form, the date, the time, and the IP address used to submit it—so you’ll always know exactly what the contact saw and what data they provided. This will be available in the contact profile, and you’ll be able to export, share, and prove consent in a few simple steps.
- Modify contact information: If someone wants to make changes to their personal data or permissions, they can do so through the Update Profile link in the footer of all Mailchimp’s basic and themed templates or by contacting you directly. If you receive a request from a contact, you can manually update their profile in just a few clicks.
- Delete all personal data: When a contact requests to be removed from your list, you can easily delete all of their personal data without affecting the accuracy of your Mailchimp reports.
The GDPR is going to impact businesses all over the world and will take some effort on your part to get ready, but ultimately it will help you develop a more trusting relationship with your contacts—and it should help improve your email deliverability, too.
The GDPR takes effect on May 25, 2018, but there’s still time to prepare. Log into your account today and turn on GDPR fields for your signup forms.