General Data Protection Regulation (GDPR)

The European Union's General Data Protection Regulation (GDPR) took effect on 25 May 2018.

To comply with the GDPR, MailmanLists made changes to its Privacy policy and procedures – describing more clearly how your personal data is kept secure and private, and how you access it.

List-owners have obligations to their subscribers in the EU – namely ensuring that their subscribers' consent to be on the list; and ensuring their subscribers' information is not shared without permission. List-owners' obligations are set out in MailmanLists' Terms and conditions of use.

The GDPR is a set of data protection rules that applies to businesses based in the EU, as well as businesses around the world that provide services and process data from or about individuals in the EU. It requires that individuals must have control over their personal data and it specifies how such data may be collected, processed, and stored.

In summary, the GDPR requires:

And in protecting data, the GDPR requires that:

See: European Commission's Data protection in the EU