If you sell goods or services to Europeans, you will need to comply with new privacy regulations going into effect soon. The EU’s General Data Protection Regulation or GDPR will “harmonize data privacy laws across Europe, to protect and empower all EU citizens data privacy and to reshape the way organizations across the region approach data privacy”.
If you do any business with Europeans that processes personal data, such as getting an email address through a subscription form or recording an IP address than this legislation applies to you. If you deal with sensitive personal data than you should contact a professional to assist you with preparing for this regulation.
If you don’t protect private information for European visitors after May 25th, your business could be subject to a hefty fine of up to 4% of revenue. If you don’t serve European customers, you could block visits from those countries to your website or make sure to identify European customers and follow the rules for those customers only.
Learn more about how to protect private information for customers here – https://ico.org.uk/media/1624219/preparing-for-the-gdpr-12-steps.pdf
If you have an email list you need proof that everyone on the list has opted in to be on it. You can’t opt a customer in to your mailing list, they need to select an opt-in button. This information should be stored as proof that they have opted into the list.