Lenos Offers Data Privacy and Protection Compliance Module to Help Address GDPR Concerns

May 1, 2018

May 25 is the day that the General Data Protection Regulation (GDPR) goes into effect. The GDPR provides EU citizens specific privacy rights regarding the collection, storage, transfer and use of their personally identifiable information. Non-compliance with the GDPR may result in significant fines and penalties of “up to €20 million, or 4% of the worldwide annual revenue of the prior financial year, whichever is higher,” according to the GDPR’s regulation 2016/679.

In March, I attended a roundtable event co-hosted by Key Events and Lenos Software on GDPR compliance and how it will affect those of us in the meetings and events industry. 

Debra Chong, CEO and co-founder of Lenos Software, is also an attorney who is an expert on GDPR, privacy and regulatory requirements. She spoke at length about the intricacies of the regulation and some of the many potential legal ramifications.

While the regulation addresses the rights of EU citizens specifically, Chong recommends that companies apply the rights provided by the GDPR to all individuals. This approach engenders trust and provides transparency.

 “There is no bulletproof test to determine when the requirements of the GDPR should apply to an individual,” Chong stated.

She continued, “We recommend adapting all data collection processes to match the GDPR requirements, as it will ensure full compliance. Trust has always been of paramount importance in data collection, but with this new regulation we are seeing a shift towards trust as the new currency of the Internet.”

It’s not just enough for your organization to be GDPR compliant – it’s also important to make sure that all your event suppliers are compliant. Many widely accepted data collection practices will no longer be allowed.

Chong explained that if a vendor’s privacy policy is posted on a client’s website, data collection is governed by the vendor’s policy - not the client’s. Even having a “powered by” on your website, with a link to the supplier’s website technically can be construed as marketing without express consent.

Chong and Lenos Software President, Patti Tackeff, are passionate about the privacy rights of individuals. Since its founding in 1999, the company has been committed to “Privacy by Design" principles. Privacy by Design is a development methodology that puts data privacy and security at the core at the outset of the design process.

Lenos Software now offers a GDPR Consent and Data Management Compliance Module for its Event Marketing Cloud and Strategic Meetings Management (SMM) Platform. The module, which was rolled out to Lenos clients in January to ensure they meet the May 25 deadline and document their compliance, is now generally available.

The Lenos GDPR Consent and Data Management Compliance Module enables customers to automatically:

  • Track and retain privacy policies, as well as ensure their integrity
  • Prominently display the privacy policy to ensure informed consent
  • Require an affirmative consent from an individual before their data is collected
  • Enable registrants to edit the data that is collected
  • Provide registrants the ability to withdraw consent
  • Enable and track communications in consent management
  • Identify if the registrant that has withdrawn consent has registered for other meetings and events
  • Track registrant transactions to determine whether data has been shared with third-parties in fulfillment of their meeting/event participation
  • Ensure the secure and permanent deletion of personally identifiable information
  • Transfer GDPR related data and information to Salesforce
  • Reproduce and replicate GDPR requirements across multiple meetings and events
  • Maintain record-keeping to comply with the GDPR and enable a customer’s standard operating procedures, internal controls and audit requirements

Events are a known collection point for personal data, which means they are more likely to be scrutinized. If you are holding an event after the GDPR takes effect and collect any personally identifiable data – even if that data is collected prior to May 25 – without obtaining EU citizens’ express consent, you could be fined.

“Many companies we speak with have not realized that planning to be compliant on May 25, 2018 is too late,” said Chong.

She added, “Companies currently collecting data for marketing events and meetings taking place after the May deadline need to be fully compliant today.”

 

 

Add new comment

Partner Voices
MGM Resorts is committed to fostering an inclusive and diverse culture, not just among employees and guests but also within its supply chain. The company prioritizes procuring goods and services from businesses owned by minorities, women, veterans, people with disabilities, LGBTQ individuals and those facing economic disadvantages. This commitment is integral to MGM Resorts' global procurement strategy.    Through its voluntary supplier diversity program, MGM Resorts actively identifies and connects certified diverse-owned suppliers to opportunities within its supply chain. The company is on track to spend at least 15% of its biddable procurement with diverse-owned businesses by 2025, demonstrating that supplier diversity is not only a social responsibility but also a strategic business imperative.    Supplier diversity isn’t just the right thing to do – it’s good for business. A diverse supply chain allows access to a broader range of perspectives and experience, helping to drive innovation, entrepreneurship and resilience, while strengthening communities. At MGM Resorts, engaging diverse suppliers ensures best-in-class experiences for guests and clients. Supplier diversity ensures a more resilient supply chain while supporting economic development in the communities in which it operates.   The impact of MGM Resorts' supplier diversity initiatives is significant. In 2023, these efforts supported over 3,500 jobs across more than 30 states, contributed over $214 million in income for diverse-owned businesses and generated more than $62 million in tax revenue. The story extends beyond the numbers – it reflects the tangible benefits brought to small and diverse-owned businesses, fostering economic empowerment in their communities.    MGM Resorts also supports the development and business skills of diverse-owned businesses through investment, mentorship and education. Through the MGM Resorts Supplier Diversity Mentorship Program, the company identifies, mentors and develops diverse-owned businesses to fill its future pipeline, while providing businesses with tools and resources to empower and uplift. Since 2017, the program has successfully graduated 105 diverse-owned businesses and is on track to achieve its goal of 150 graduates by 2025.     MGM Resorts’ commitment to supplier diversity not only enhances its business operations but also plays a crucial role in uplifting communities and fostering economic development. This approach reinforces the idea that diversity is a powerful driver of innovation and resilience, benefiting both the company and the wider community.