Just in case our industry wasn’t still feeling the pain of TPD and more recently GPSD, we are soon to be hit by an updating of the Data Protection regulations.
These new regulations (General Data Protection Regulation (GDPR) (EU) 2016/679) bring some hefty penalties as well as procedural burdens.If you are processing and/or holding personal information on any EU citizen you will soon be obliged to comply with GDPR.That means, as a vape store, if you are running a loyalty program that holds customers personal details you will need to implement everything that GDPR requires to keep your client data safe and secure. Failure to comply could mean a €10m or 2% of global turnover fine for a minor breach or €20m or 4% of global turnover fine for a major breach!
Do we have your attention now? of course we do!It seems the vape industry is being hit by new regulation after new regulation, but GDPR is hitting all industries, not just ours. It doesn’t detract from the fact that you have a lot of work to do, if you haven’t already began.
Aside from loyalty programs, you need to factor in GDPR when collecting consumer data when it comes to suspected safety concerns. If you haven’t got a system to collect safety concerns on your product, you need to think about it, as both TPD and GPSD both require you to maintain a system to record and monitor safety concerns. Our VAPEVIGIL system takes care of the GDPR aspect of data collection and removes that burden from you.If you need advice on GDPR or collecting safety concerns, get in touch with Arcus Compliance Ltd today.
Posted on January 3, 2018 by Lee Bryan