The General Data Protection Regulation and Consent – Users Have To Opt-in
To be valid, consent must be knowingly and freely given, clear and specific. Organisations should keep clear records of what an individual has consented to, and when and how this consent was obtained, so that they can demonstrate compliance in the event of a complaint. Freely given – users have to have taken a positive action to opt in. A pre-ticked box is not covered. Specific – a user has to be able to specifically opt-in to receive communications in various forms. Informed – Users now need to be explicitly reminded of the rights that these regulations provide. Privacy policies will need to be updated.