GDPR: Here’s What You Need to Know for Your SMS Messaging

The effort to protect individuals’ information began way back in 1981 when the Council of Europe Convention 108 voted to make it a priority. Fast forward to 2016, and the General Data Protection Regulation (GDPR) was approved by the EU to bring the concept into the modern era.
Even though the UK voted to exit the union, it’s been made clear that the UK intends to follow the GDPR. It sets the highest standards for protection and gives control to the individual over how you use their data. It’s set to take effect in May 2018.
In preparation, the Information Commissioner’s Office (ICO) has started publishing guidance on how businesses and organisations will be impacted. If you’re using SMS messaging, you’re already aware that you need permission before contacting anyone. One of the major aspects of the GDPR is the changes for obtaining consent.
Right now, there are two different opt-in options: soft and hard. It appears that the soft opt-in may not be allowed and there are additional requirements for hard opt in. Here are some of the highlights from the ICO documentation so far:
“Consent requires a positive opt-in. Don’t use pre-ticked boxes or any other method of consent by default.”
“Keep evidence of consent – who, when, how, and what you told people.”
These tie into the updated definition of consent shown here:
They sum it up as follows: “In essence, there is a greater emphasis in the GDPR on individuals having clear granular choices upfront and ongoing control over their consent. “
The Good News
The changes aren’t all bad news. It turns out that if you’re already complying well with the existing Data Protection Act, then you’re in good shape. That doesn’t mean you don’t need to take steps though.
The ICO released a twelve step checklist for organisations to use in the coming months to work towards compliance. The GDPR involves more than just consent and touches on all the gathering and processing of personal data.
Another potential positive side effect of the GDPR is that the more stringent opt-in requirements mean that you’ll have less “casual” people on your SMS lists. People need to be more deliberate in giving their permission, which means those that do may be more motivated to take action.
So whether you are running an SMS marketing list or a list for a non-profit, it means you’ll have more success. Your ROI, however you measure it, should improve.
More Information
The ICO is maintaining a webpage with links to their blog, events, and latest publications on the GDPR. You can check it for updates, or sign up for their newsletter.
Our account managers and support staff are also ready and able to address any questions about the changes too. Feel free to contact us via Live chat, email or phone.
Related Articles
SMS Marketing Compliance and The New GDPR Regulations
As with anything in business, there are rules and regulations that need to be followed. Some of the key ones are laid out in the UK Privacy and Electronic Communications Regulation (PECR) - and while this can seem like a daunting document at first, it doesn't need to be...
What You Can Learn About SMS Marketing from These 7 Companies
The Information Commissioner’s Office (ICO) issued seven monetary penalties against companies this year. We’ve read through them all – so you don’t have to – and discovered two lessons every company should learn about SMS marketing if they want to be successful.
SMS Marketing: An Essential Guide to PECR
The PECR Regulations, better known as the Privacy and Electronics Communications (EC Directive) Regulations 2003 are one of the most important pieces of legislation affecting those involved in SMS Marketing. They exist to safeguard the privacy and use of personal information when used for direct marketing through electronic means, including communications by SMS. Parts of it crossover with the Data Protection Act 1998 (DPA) and where it does so, both pieces of legislation should be complied with. Unlike the DPA, the PECR is obligatory whether or not you process personal data in the course of your business. Read this essential guide to PECR for SMS Marketing to ensure you know everything you need to know.
How important is it to run an SMS opt in campaign?
3 Reasons Why Enterprises Shouldn’t Build Their Own SMS Gateways
Enterprises are large companies. Sometimes that means they think they should be able to do everything themselves. But when it comes to SMS messaging, building an in-house gateway is more difficult than you might think. Read why finding a good SMS service provider is a better option.
5 Common Questions About SMS Marketing Compliance
Electronic marketing is a tricky thing. There are rules and regulations you need to follow, and it can all seem pretty intimidating at first. To help you get started, I’ve gathered five of the most commonly asked questions about SMS marketing and the regulations and summed them up here.
Hefty fines for companies not following opt in SMS messaging policies
What You Can Learn From a Bad SMS Message
In last week’s blog I covered how the Trump campaign sent unsolicited SMS messages to voters. This week I’m stuck on the same topic, but from a totally different angle: what we can learn from that failure. Because honestly, their biggest issue might not be violating the law. It might be the people they have writing their SMS messages. It’s time to dissect the message that spawned the law suit, and learn what we can from it.
SMS Opt-In: Why You Want It and How To Get It
The first thing to remember is that legally, you must give the customer the chance to both opt-in and opt-out of your SMS campaign - but the good news is people are happy to opt-in - 49% of them according to a 2014 survey. So all you need to do is stay compliant and follow some basic guidelines to grow your list.