The European Union's General Data Protection Regulation (GDPR) takes effect on 25 May 2018.
List-owners now also have obligations to their subscribers in the EU – namely ensuring that their subscribers consent to be on the list; and ensuring their subscribers' information is not shared without permission. List-owners' obligations are set out in MailmanLists' revised Terms and conditions of use.
The GDPR is a set of data protection rules that applies to businesses based in the EU, as well as businesses around the world that provide services and process data from or about individuals in the EU. It requires that individuals must have control over their personal data and it specifies how such data may be collected, processed, and stored.
In summary, the GDPR requires:
And in protecting data, the GDPR requires that: