Doing business in the EU
Challenge
Carrot Rewards is an app that tracks and rewards physical activity. With the stress on the healthcare systems initiatives like Carrot Rewards help all stakeholders, including government, encourage people to be proactive about their health by helping them "get off the couch". Carrot Rewards have developed a relationship with the UK government but in order for them to operate in the EU/UK they had to become compliant with the GDPR.
Solution
Carrot Rewards engaged Newport Thomson to conduct a privacy review - a thorough audit of their current practices including Data Mapping, policies and procedures and staff education & training. We then moved quickly into implementing a customized Privacy Management Programme, including written policy manuals, Data Impact Assessments, data governance strategies, engaging UK based processors, adding clauses to third party contracts, etc.
Results
As a result of our 6 months of engagement, Carrot Rewards had retooled their practices and were able to assure the UK government (Health Department) with written proof of their GDPR compliance. The contract was potentially worth hundreds of millions of Euros, and GDPR compliance was not optional.
Want fresh marketing stories in your inbox?
Get the weekly email that makes you a marketing genius.
Stay informed and inspired, for free.