Ian Tresman
New Member
General Data Protection Regulation (GDPR) compliance must be met when the law comes into effect on 25 May 2018, replacing the old Data Protection Act. Although there are eight points that must be met (see the ICO Guide (link)), I was wondering how others plan to demonstrate positive opt-in consent for telephone bookings?
Some suggest that the ICO Consent guidance (link) recommends recording telephone conversations, but I think this will be costly and impractical for most. Alternatively they suggest that a good telephone "script" will be sufficient. For example:
"Do you give your permission for your personal information to be stored on our computer", with an explanation of:
Some suggest that the ICO Consent guidance (link) recommends recording telephone conversations, but I think this will be costly and impractical for most. Alternatively they suggest that a good telephone "script" will be sufficient. For example:
"Do you give your permission for your personal information to be stored on our computer", with an explanation of:
- the name of your organisation;
- the name of any third party controllers who will rely on the consent;
- why you want the data;
- what you will do with it; and
- that individuals can withdraw consent at any time.