ico
Previously I’ve talked about the affirmative consent standard found in the US federal anti-spam law (CAN-SPAM). I’ve found it very useful test when trying to understand if a process is appropriately opt-in our not. Wondering if GDPR has something similar? It does.For various reasons, the UK and the EU have slightly differing versions of GDPR, but the UK’s Information Commissioner’s Office provides us with a pretty good guide for email marketing permission standards, and I think it’s a good starting point to learn about opt-in requirements EU-wide.The ICO explains that “Consent requests need to be prominent, concise, easy to understand and separate from any other information such as general terms and conditions.”Opt-in is key — see “What methods can we use to obtain consent?” for more details. No pre-checked box, not hidden in terms and conditions, and make it easy to understand.The handy website GDPR.eu, put together by Proton AG