Even though the General Data Protection Regulation (GDPR) is now in effect, it’s hard to stay up-to-date with what it really means for event and meeting pros. Bookmark this list of continually-updated resources to stay current with GDPR and other data privacy/protection issues.

Disclaimer: These resources are provided for informational purposes only and should not be relied upon as legal advice. We encourage you to work with a legally qualified professional to discuss GDPR, specific applications, and how to ensure compliance as it applies to your organization.

“The events industry collects and uses a lot of personally identifiable information (PII) on a regular basis and on a massive scale.  Like it or not, GDPR compliance is a must to avoid the multi-million Euro/dollar fines that will be assessed by the EU.”

– Kevin Iwamoto, GLP, GTP | Senior Consultant, GoldSpring Consulting LLC

Seeking GDPR Consultation

Living with GDPR

When the Dust Settles on GDPR
from Cvent
If you’re still looking for loopholes in GDPR, you’re missing the point.

Marketers and Tech Companies Confront California’s Version of GDPR
from Ad Age
California Gov. Jerry Brown signed the Consumer Privacy Act, giving residents of the state significantly more control over how their data is collected, used and handled.

Buckle Up, Marketers: Here Comes The GDPR’s Cousin
from Media Insider
Now is not the time to get comfortable with a new status quo. Not only will the implications of the GDPR (and what it means to be compliant) continue to unfold, but companies must also begin to prepare for new restrictions in the form of the EU ePrivacy Regulation.

GDPR: How will it change over the next few quarters?
from GDPR:report
While for many, achieving GDPR compliance has been a monumental undertaking, it’s not a reason to take the foot off the gas.

No need to be frightened by GDPR
from SME
Millions of small-medium sized businesses have been scared – unnecessarily so the view of Ardi Kolah, Director of the GDPR programme, Henley Business School.

How Bad Was GDPR’s Effect on Email?
from
Associations Now
According to one estimate, nearly a quarter of email recipients unsubscribed in response to those GDPR privacy disclosure emails marketers sent.

GDPR is here, but it doesn’t mean your business is done prepping
from TNW
This long drawn out regulation could actually take a few months to uncover non-compliant companies.

Blog Posts/Articles

Blog Posts

The 25th May 2018 marks a seminal event for businesses worldwide, with the EU’s General Data Protection Regulation (or GDPR) entering into force following its approval in 2016.
Designed to bring consistency, clarity, and conformity to the way companies handle the data of EU citizens, the GDPR will supercede all national data protection policies of EU member states, including the UK’s Data Protection Act.

Top 10 GDPR Red Flags for Meetings and Events
from Eventsforce
Based on conversations we’ve had with clients and other event professionals across a number of industries, we have identified below the most frequent red flags around GDPR.

Is Your Event Attendee Acquisition Technology Prepared for GDPR? 
from Gleanin
Understand how GDPR is changing event attendee acquisition and seven questions to ask your technology provider to keep data safe and compliant.

De-Mystifying GDPR, An Overview for HCP Reporting Organizations
from Lenos Software
This is an excellent outline of GDPR and how it intersects with HCP compliance.

Why GDPR Is an Unprecedented Opportunity for Global SMMP Compliance
from MeetingsNet
The countdown is on to May 25, 2018, when the European Union’s General Data Protection Regulation goes into effect. Now’s the perfect time for global strategic meetings management program leaders to finally get visibility and oversight of all rogue meetings and events spend emanating from and in the EU and U.K.

Industry Insight: The Impact of GDPR on Meetings & Events
from Eventsforce
If you’re an event planner or marketer and not up on the General Data Protection Regulation (GDPR) – a new, stricter EU data privacy law that comes into effect on May 25th 2018, the time to pay attention is now. George Sirius, CEO of Eventsforce, explains in an interview with MeetingsNet magazine, why GDPR is one of the most important changes facing the events industry today.

Should GDPR be Rebranded as GDDPR (General Denial of Data Protection Regulation)?
from Meetings & Conventions
I quickly realized that it will require a ton of work to get ready for compliance with this new data-privacy regulation for all multinational companies, especially in the meetings/events industry, where the handling of personal data is a requisite. Indeed, the measure involves a multitude of issues such as opt-in consent-form documentation; implicit and transparent descriptions of how people’s data will be used, by whom, for what reasons, etc., within those consent forms; having to respond to data breaches within 72 hours; documenting the deletion of data, and the list goes on and on.

GDPR: Hope Is not a Stategy
from MeetingsNet
Speaking out about the impact the increasingly imminent General Data Protection Regulation will have on meeting planners.

GDPR and The Event Industry: Get The Facts 
from etouches
As 2018 approaches, the European Union’s GDPR, or General Data Protection Regulation, is on the minds of event planners not just in Europe, but around the world — are you prepared?

7 Steps to Get Your Events Ready for GDPR
from Eventsforce
It’s easy to look at GDPR compliance as a technology initiative and not a business one. But the reality is that even though it may be the responsibility of your IT and legal teams to sort it all out, there are a number of things that event planners need to do to make sure they don’t put their organisations at risk. This checklist highlights the key steps to take now to prepare your events for the May 2018 deadline, based on advice published by the UK Information Commissioner’s Office (ICO).

How Will GDPR Impact Event Planners, Their Suppliers and Event Attendees?
from Meetings & Conventions 
How will GDPR impact events planners and their technology-solution partners? According to the Eventsforce e-book…

Ask the Experts: What Impact will GDPR have on Meetings and Events?
from Eventsforce
EventTech Talk spoke to a number of well-known event experts to find out what they think about GDPR and what kind of impact it will have on the industry. Here’s what they had to say.

Why May 28, 2018, Will Be a Game Changer
from Meetings & Conventions
In the corporate-procurement world, some examples of a compelling event would be anything regulatory coming down the road where mandatory compliance and adherence to a new regulation or law has to be met by a set predetermined date.

Will GDPR Change the Rights of Your Attendees?
from Eventsforce
General Data Protection Regulation, or GDPR, will radically change the way event planners collect and handle the personal information of people coming to their events. But compared to current data protection regulations, what will actually change when it comes to the rights of attendees?

5 Questions to Ask Event Tech Providers About GDPR
from Eventsforce
It is important for event planners to find out how their event tech providers are planning to meet their obligations around GDPR by asking them the following questions.

Why You Need to Be Aware of GDPR
from Meetings & Conventions
Whether you are a buyer or supplier, you need to immediately start asking within your organization how this new measure will impact your existing and future travel- and meetings-supplier agreements.

What Event Planners Need to Know About Europe’s New Data Protection Law
from Eventsforce
One of Europe’s biggest shake ups in data protection and privacy laws is coming into effect next year and event planners need to be prepared. The new General Data Protection Regulation (GDPR) will apply to every organisation in the EU and ANY organisation holding data on EU citizens – regardless of their location. It is a major global issue and one that is vital for marketers to learn about as ignoring it could lead to some very serious financial consequences.

Articles

Coming to Grips With GDPR
from PCMA Convene
This 10-point checklist from Cvent’s David Chalmers, will help get you ready for GDPR.

Blockchain & GDPR: better safe than sorry
from Arne Rutjes / IBM CIC Benelux
You may be dealing with personal data more than you thought. Until the legal interpretations have solidified I recommend to err on the safe side and not store any personal data in any form on a blockchain. If you really must, make sure you follow the necessary steps to limit non-compliance and respect data privacy laws as much as possible.

GDPR for Strategic Meetings Management Programs (SMMP)
from GoldSpring Consulting LLC
This links to a collection of articles from the GoldSpring Consulting LLC team on GDPR compliance for SMMPs.

The Meeting Professional’s GDPR To-Do List
from MeetingsNet
Here are nine things planners need to do now to prepare for the May 25 GDPR implementation.

SMMP Compliance Will Get Real with GDPR
from Business Travel News
The countdown to May 25, 2018, is set for compliance with the European Union’s General Data Protection Regulation. Strategic meetings management program leaders can leverage the opportunity to get visibility and oversight of rogue meetings and events spend.

WTF is GDPR?
from TechCrunch
GDPR is a significant piece of legislation whose full impact will clearly take some time to shake out. In the meanwhile, here’s our guide to the major changes incoming and some potential impacts.

The definitive guide to GDPR for the events industry
from realbuzz registrations
A definitive guide to the General Data Protection Regulation for event professionals. Find out what your event needs to do to become GDPR compliant.

What Event Planners & Organisers Need to Know about GDPR
from George POPA / Congress Bookers
Given that event organisers rely heavily on personal data that is easily accessible and not encrypted such as email address, name, surname, gender, etc, the world of events is particularly interested in this new regulation. Therefore, all event organisers and event management software vendors – this includes the ones that aren’t based in the EU but store and process data from the EU – need to understand what GDPR entails.

The General Data Protection Regulation (GDPR) is coming soon. Are you prepared?
from Events Industry Council
Do you know what personal data you hold and why you are holding it? Do you know how you are securing personal data? What measures are you taking to make sure your entire team knows the importance of protecting data? Do you know how long you are holding data? If someone wanted their personal data removed from your system, how quickly and thoroughly could you respond? Do you have specific information on when individuals in your marketing database provided permission to send them communications? In order to comply with the General Data Protection Regulation (GDPR), you’ll need answers to these questions.

The GDPR’s impact on the event industry
from eventdrive
It’s true that GDPR may seem like an obscure subject to SME’s and start-ups however, what are the overall consequences of this regulation on companies, more specifically in the world of events? Let’s take things step by step.

eBooks/White Papers

eBooks

A hotelier’s guide to GDPR
from Cendyn
Cendyn has created a guide to help you prepare for what’s to come and to ensure you get your database into shape. Take a deep dive into the fundamentals of GDPR and follow best practices for engaging with your database in the lead up to May 25, 2018.

The Event Planner’s Guide to GDPR Compliance
from Eventsforce
Find out what impact the new EU General Data Protection Regulation (GDPR) will have on event marketing, data management and event technology and what steps event planners need to take now to get ready for the May 2018 deadline.

Preparing Event Planners for GDPR
from Glisser
Loads has been written around the impact of GDPR, but very little that actually helps event and marketing professionals implement change.That’s why we’ve created a step-by-step workbook written for those looking to kick-start their GDPR-readiness, which can be filled in for your business, along with useful Excel templates to help you manage the process.

GDPR FOR MEETINGS AND EVENTS: What your event tech provider can do for you
from etouches
etouches and soors.it have joined forces to assist planners and their companies by providing an eBook on GDPR that speaks directly to the industry and not just to the list of regulations.

White Papers

Download the guide to find out what GDPR means for lead generation at events and how to get prepared for the regulation before the deadline.

Data protection in the events industry
from reftech
For events industry professionals, data is the key to the success of conferences, events, and trade shows. Every event you help to create generates a mountain of data ranging from contact details to dietary requirements to sponsor leads. As the event approaches, that data is typically shared across a variety of roles from exhibitors to advertisers to hotels. The nature of our industry means that this data also moves across international borders. Put simply, a lot of information moves around a lot of different people in a lot of different countries.

Webinars/Videos

Webinars

Is Your Event Technology GDPR Ready?
from CadmiumCD
In this webinar Jason Bernstein, partner at Barnes & Thornburg LLP, and Bryan Scott, CadmiumCD CSO, will share an overview of what it means to be GDPR Ready, what processes CadmiumCD has in place to be compliant as a data processor, and explain CadmiumCD’s timeline for upcoming GDPR related milestones.

Getting in Shape for GDPR: a Feathr Webinar
from Feathr
GDPR is coming. Those words have been striking confusion in the hearts of marketers, analysts, and customers since the EU regulations were announced almost two years ago. Adopting a new set of rules can be a complex and nerve-racking job, but never fear–Feathr is here.

GDPR: What You Need to Know Before May 25 
from etouches
In just a few months, GDPR will start to take effect. Are you prepared for the changes that you need to make? Do you know what responsibilies fall on you? Join us as we walk you through some of the fundamentals that all event planners should know about GDPR and some steps you can take to make sure you are ready on midnight May 25!

Beyond the Fear: Embracing Simplicity With the GDPR 
from Meetings Today
While it’s easy to get overwhelmed in understanding the rules of the GDPR, or General Data Protection Regulation, are we missing the bigger picture? Join a very different discussion about GDPR, its underlying principles, and how we can improve and transform the business of events with it.This free one-hour webinar will be moderated by KiKi L’Italien, founder and CEO of Amplified Growth and a Meetings Today blogger who wrote the March 2018 cover story on GDPR, and feature expert commentary on how organizations can shield themselves from this potentially calamitous new regulation.

Are You Ready for GDPR? The Top 10 Things to Know for GDPR Compliance
from BrightTALK
Just three months remain before companies that process the personal data of those within the EU must be in compliance with the General Data Protection Regulation (GDPR). Yet, there are often still outstanding questions around some of the key changes that will go into place and their impact on various parts of an organization. This webinar will highlight 10 key considerations that need to be made for controlling how data is accessed, stored, kept up to date, transferred and deleted. It will also breakdown four key steps to take to assure that you are on your way to meeting the necessary requirements.

GDPR Is Coming – Is Your Organization Ready? Key Steps to Help You Prepare
from BrightTALK
On May 25 the long-awaited General Data Protection Regulation (GDPR) will go into effect across Europe. GDPR is the biggest overhaul of data protection laws in more than two decades. How prepared is your organization for GDPR?

Meetings Master Classes 2018 Webinar Series Session 1 – Don’t Make a $23 Million Mistake: What You Need to Know About GDPR
from MeetingsNet
You may think you don’t have to worry about Europe’s new General Data Protection Regulation, which as of May 2018 will change everything about how event organizers collect, process, and protect European attendees’ personal data. But if you host events in Europe, or have European citizens or residents come to your meetings anywhere in the world, you do.

GDPR: What travel professionals outside of the EU should know
from Global Business Travel Association
Whether you provide travel services or you manage a corporate travel program, by now, you’ve very likely heard of the European Union’s General Data Protection Regulation (GDPR), set to go into effect May 25, 2018. While the GDPR is a European privacy law, it has impacts on any organization doing business in or with the EU.

Assessing Your Risk and Preparing for the European General Data Protection Regulation (GDPR) 
from PCMA
If you have data on even one member or customer in the EU, you need to understand the General Data Protection Regulation (GDPR) or face fines when it becomes enforceable. This could mean changes to the way you currently collect and disperse data and adjustments to the data you currently store. You’ll walk away with critical information to assess your risk and steps to prepare your organization’s compliance before these regulations go into effect in May 2018.

Videos

CL18 Live Interview – Kevin Iwamoto
from PCMA

ETL2017 – Top tips for general data protection regulation (GDPR) compliance
from Event Tech Live
Panel discussion offering top tips for general data protection regulation (GDPR) compliance from the Conference and Creativity Stage at Event Tech Live.

The Impact of GDPR on Marketing & Event Professionals
from Glisser
With under a year to go until it is made law, the General Data Protection Regulation (GDPR) will affect all marketers and event managers. Get ahead of the game, and understand how to plan and prepare to ensure your marketing activity is compliant, and how technology can help you get there.

 

Other Resources

Infographics

Are Your Events Ready for GDPR 
from Eventsforce
Eventsforce conducted a research study with 120 event professionals earlier this month to assess the industry’s current state of ‘readiness’ for GDPR. The study investigates where event planners stand in terms of their understanding of the new legislation, what steps they’re taking to get ready for the new requirements and the kind of challenges and opportunities they feel GDPR will bring to their organisations in the long-run.

GDPR Building Engagement Based on Trust
from Lenos
This infographic highlights the benefits for global governance in enterprise meeting, event and conference marketing.

Podcasts

Stefan and Chris from Akkroo discuss the imminent arrival of the General Data Protection Regulation (GDPR), and the effect it will have on how organisations collect, process and store leads from trade shows and events.

What Associations Need to Know NOW about GDPR
from Association Chat
This show’s guests include two high profile UK-based GDPR experts, an association CEO, and an association industry technology consultant leading the way in organizing leaders for GDPR readiness.

LinkedIn Groups

GDPR for Event Professionals

GDPR General Data Protection Regulation Technology

Other

GDPR Seminar [IN-PERSON EVENT]
from Eventogy
Eventogy will be hosting a GDPR seminar on the afternoon of Thursday, 3 May 2018 at the Goldsmith’s Centre in Farringdon, Central London. Talks with industry experts and GDPR specialists will be followed by drinks and a chance to network with plenty time for Q&As during a panel session. The content will be specific to the events industry and aimed towards event managers, so if you feel you could use a last-minute refresher on GDPR, please register here.

Guide to the General Data Protection Regulation (GDPR)
from ICO
This is a living document and we are working to expand it in key areas. It includes links to relevant sections of the GDPR itself, to other ICO guidance and to guidance produced by the EU’s Article 29 Working Party. The Working Party includes representatives of the data protection authorities from each EU member state, and the ICO is the UK’s representative.

What is the General Data Protection Regulation?
from Facebook
Facebook’s take on GDPR and their commitment to compliance.

Slack’s Plan for GDPR Compliance
from Slack
Slack’s take on GDPR and their commitment to compliance.

GDPR Resource Suggestions