In our previous articles, we covered how a GDPR-aimed security will reinforce the brand’s reputation, giving your business the possibility to demonstrate reliability to your customers when it comes to their data.
In fact, many sectors can benefit from integrating in their business models the opportunity provided by GDPR compliance. For example, let’s see some tips and advice for the tourism sector.
Overview
Travel companies manage customer data when they process bookings, record potential interest and launch marketing campaigns. This data can vary from names, email addresses to bank details, as well as passport information and biometrics. Following GDPR’s two main concepts of consent and security, clients need to provide permission before their personal data are secured. This means you must have in place a system for them to know what and why their information is being stored, but also how if they can be used for marketing and email campaigns.
Travel agencies
GDPR affects almost every tour operator around the world. In fact, even if a tour operator who does not work with EU destinations, it needs to be prepared for customers who are EU citizens. If you store personal data belonging to an EU citizen, there are several measures that you will need to put in place to ensure that their data is protected to a level deemed safe under the new legislation.
Accommodation providers
Most national tourism and boarding regulations require that certified tourist establishments keep a register of visitors using the accommodation provided. Hotels and other tourism accommodation providers need to keep a visitor register, which records the personal data of their customers. On the other hand, the regulations often oblige visitors to supply this information.
Under the GDPR, the accommodation providers (and the more and more widespread intermediary online services) must keep this information securely, out of sight of other guests and retain it for a minimum of one year. The visitor register cannot be used for any other destination. Even if you intend to carry out any sort of marketing activity, consent must be obtained separately from the visitor registration process.
Sounds confusing? Not sure how to proceed? The SMOOTH Market Pilot is here to help.
Registrations for the SMOOTH Market Pilot are open! What can you get in return?
-
A free GDPR compliance report: a series of recommendations to improve your company’s compliance with the GDPR.
-
Be compliant, avoid potential fines. The lack of awareness, expertise and resources make small enterprises the most vulnerable institutions towards a strict enforcement of the GDPR. Joining our pilot minimizes potential risks through the use of innovative technological solutions.
-
Build up your reputation with clients and network by showing you have an adequate solution in place to protect their data
How do I join?
You can register as a member of the SMOOTH Community on FundingBox, a member of the project’s consortium, and apply for our market pilot.
Register at https://questionnaire.smoothplatform.eu/ui