How To Make Your Web Forms Compliant with GDPR

May 15, 2018

Do I need to check that the Web Forms embedded in my website is compliant with European Union’s General Data Protection Regulation?

Yes, it is must if you are marketing to European subjects. If you are collecting and storing individuals information within any nations comprising the European Union, then you must be serious about it. The regulation applies regardless of where your business is based and it applies to companies even if their targeted customers are not Europeans.


What is GDPR?

A new regulation that regulates data privacy legislation governing Europe. The privacy regulation mainly focuses on data security to standardize how marketers collect and store their user’s data. The GDPR came into effective on 25th May 2018.

Who comes under or affected by GDPR?

1. If your business operates from European Union (EU) countries
2. Or process any personal data of an individual located within EU region (EU citizens)
then you should comply data processing method with General Data Protection Regulation (GDPR).

What type of forms need to comply with GDPR?

Not all forms need to GDPR friendly. Survey, quiz, questionnaire or forms that don’t process personal data are GDPR free. Forms that process personal data of any user need to follow GDPR.

What Personal data or personally identifiable information stands for?

The information involves identity detail affects one’s anonymous status considered as Personal data.

What are fields that are GDPR affected?

Fields like location data, IP-address, name, email, phone, address, company, id card details & other fields related to personal data. These fields need special attention under GDPR.

Best Practices for making Forms GDPR compliance

Each website may require unique considerations that need to be addressed through legal counsel familiar with GDPR regulations, there are a couple of changes most websites require to maintain to improve GDPR compliance.

  • Collect & process personal data by explicitly requesting the user consent under GDPR. The easiest way to do this is to add a checkbox with info on why you need this data in plain understandable language.
  • Include a mandatory checkbox to get permission from visitor to get their required personal data with a link to your Privacy and Cookies Policy. And make sure your visitor visits your policy page.
  • GDPR requires the consent checkbox not to be checked by default. Instead, the user needs to choose it manually.
  • Have a field to collect info on where and how you received consent from the individual and store all consent forms in your CMS and marketing automation system.
  • Gather information that is essential for your business and avoid collecting unnecessary personal data.

We hope this article helped you to begin creating GDPR compliant web forms for your website. If you want to make changes in your website or do any custom development to adorn your website, you can contact us at [email protected].

The GDPR is broad in scope, and successful compliance will vary between organizations. This article contains general information. However, in all situations, we strongly recommend you to consult your own legal team.