sound effects libraries GDPR Asbjoern Andersen


On May 25th 2018, a new set of rules from the European Union called the General Data Protection Regulation (GDPR) come into effect.

They're made to protect the privacy of your users & customers - and if you're selling sound effects, running a newsletter or other initiatives to promote your sounds, the rules will likely affect you, whether you're based in the EU or not. The question is how.

That's something I'd like to help clarify - and to do that, I've reached out to Kasper Mai Jørgensen, co-founder of ComplyTo, a company that helps anyone doing business online to ensure they're complying with the GDPR rules.


Please note: I hope the following helps you get a better idea of the implications of GDPR. However, as I'm not a lawyer, I can't make any guarantees as to the legal accuracy of the information below.
Please share:
 

Hi Kasper, could you please introduce yourself?

Hi Asbjørn, I am co-founder and CEO of ComplyTo. I come from a finance and compliance background, and found that as a small or medium size business there is no easy and cost effective way to work with compliance in general and GDPR specifically. Therefore we started ComplyTo.
 

What do the new rules mean for a webshop owner – and what are the consequences of not being compliant with the rules?

The consequences are obviously fines. I am sure a lot have heard that they can be up to €20 million EUR. For a webshop this is probably a bit irrelevant, at least in the beginning. However to me, the biggest risk is that customers expect that a webshop has this under control, and if not, they will take their business elsewhere.
 

What are the steps that need to be taken to prepare for GDPR?

Documentation, documentation and documentation. The most important step is to start by documenting that you know what data you have, where – and which companies you have contracted with to store these (Google, Microsoft, Mailchimp and many others). Smaller companies in particular usually use many cloud solutions. You are responsible for the privacy data that you store in those systems.
 

What agreements do you need to have in place, what sort of documentation are you required to have – and are there certain items that need to be featured on the site itself?

The most important document you need right now is your privacy policy. You should have one for each of you activities – e.g. one for the webshop, one for HR activities and other activities where your company is processing privacy data.

Additionally to manage your suppliers that store your privacy data, you need what is called “data processor agreements”. If you use the larger cloud solutions they might have sent you such an agreement already. It is your responsibility to ensure that these agreements are aligned with your requirements. When you sign or accept such an agreement, the fine for breach of personal data will be forwarded to you and not the supplier. So you need to be a bit critical on these, as, at the end of the day, the supplier has interests that are in opposition to yours.
 

GDPR and webshops:

Many webshops run on WordPress / Woocommerce, and there’s a lot of effort being put into automating many of the processes needed to comply with the rules. Here’s an overview on what’s happening with Woocommerce and GDPR, and here’s an overview of what’s happening in WordPress.

 

As a shop owner, what are some of the things you can’t do going forward?

As long as you were following the law before you can continue with most activities. Most countries have had data protection rules for many years. The main difference now is that you need to document that you are in control of the privacy data.

As long as you were following the law before you can continue with most activities

You can still send emails to your customers, you can still send newsletters (if the person has subscribed – which was also the rule before GDPR). You cannot do ‘cold emailing’ – but this wasn’t allowed in most countries before anyway.
 

If someone wants their data removed from your records, how do you go about that in practical terms? An often-heard term in relation to GDPR is ‘The Right To Be Forgotten’ – what does that mean exactly?

I use to say “forget the right to be forgotten” 😀. The right to be forgotten is not an absolute right. If you have a legitimate reason to keep the data, you do not have to delete data if a customer asks to be forgotten. The right to be forgotten is mostly relevant if you get consent to use privacy data, but contact details, purchase history etc you can collect and process without consent and you can keep these data as long as you have a valid purpose – e.g. to comply with bookkeeping rules.

You should be more concerned by the right to insight. Under this you have to send the privacy data on a person to this person if they request it – so you need to know where you store all this data, and how to get the data out.
 

What happens if you only sell via a 3rd party marketplace, such as A Sound Effect?

If you sell through a 3rd party it makes it easier to manage the privacy data for the persons buying the product – since the 3rd party marketplace manages the contact to the end-customers. However you may still have privacy data from your suppliers, other customers, and you probably have Asbjoern’s contact details ;-) Nevertheless it makes your documentation much simpler, as the privacy data you have access to is much more limited.
 

How does ComplyTo’s solution work – and if shop owners uses ComplyTo, are they guaranteed to be in compliance?

ComplyTo makes a tool to ensure that you document your work with GDPR. The system assists you in mapping what privacy data you have. Based on that, we generate the privacy policies and data processor agreements needed. Additionally we have a risk and task management system that you use for ensuring that you stay in compliance. If there is a mismatch with the data mapping and the rules we will notify you, by creating a risk and task list with specific guidance on what to do.

We do not claim to guarantee compliance, as that would require us to audit your data input and would not make it possible to deliver our product for a fair price. But we get you at least 80% of the way. For most small and medium size companies we have all you need. And you can always get an auditor or lawyer to review the result – just like you can get an auditor to review your accounts if you want additional assurance.

The data protection rules changes all the time, and new rules and practices will impact what can be considered compliance. We are continuing to update our system to manage these developments to ensure you are up to date.

And by using a system to map your data it is also easy to update all documents, tasks and agreement when you decide to put privacy data in a new system or in another ways change your use of privacy data.
 

How do you demonstrate / document that customers and visitors have accepted the GDPR compliant rules on your site? Does continued use of your site after they’ve seen the rules equal consent?

You do not need to get consent from users that they have read and understand the rules. Nor in other ways get acceptance from the users. You just need to inform the user. Only in a case where you are processing privacy data, basic consent would be relevant – that would be the case for newsletters. for example. If you get consent you only need consent for the specific data and specific use thereoff – e.g. names and emails for sending newsletters.

Do you have more questions?

If you’ve got more questions about GDPR, please leave a comment in the comments section, and Kasper Mai Jørgensen will do his best to answer them as soon as possible.
 

Do you have to notify all your existing customers about the new GDPR rules?

You do not have to inform the users of the GDPR rules, but you need to inform them about what, how and how long you manage their privacy data. This is what you do in a privacy policy. The privacy policy should be given to the persons affected – for a web based business, placing it on the website and sending a link to customers when they buy anything would be a good place to start.
 

To sum up, can you offer a quick checklist of actionable GDPR steps for webshop owners?

1. Know what privacy data you have and where
2. Document what you do with privacy data
3. Ensure that your users, employees etc are properly informed about how privacy data is processed in the company – through privacy policies.
4. Ensure that you have data processing agreements in place where you are having 3rd parties managing this
5. Ensure that you can document you work with this continuously. Ensure that you follow processes, review the data, remember to delete data when no longer in use etc. GDPR is not a one-time effort. It is a continuous process.

If in doubt, put yourself in the place of the user – if you would be satisfied with the information and use of data as a customer or user?
 

A big thanks to Kasper Mai Jørgensen for sharing his insights on GDPR and what the rules mean for SFX creators. If you’ve got any GDPR-related questions, please leave a comment below, and Kasper will do his best to answer them when he can.

 

Please share this:


 


 
 
THE WORLD’S EASIEST WAY TO GET INDEPENDENT SOUND EFFECTS:
 
A Sound Effect gives you easy access to an absolutely huge sound effects catalog from a myriad of independent sound creators, all covered by one license agreement - a few highlights:
 
 
  • Foley Modern Seating Play Track 75+ sounds included $25 $20

    Modern Seating is a library compiled of a variation of modern chairs found in the office or home. The idea is to fill the need for chairs which aren't always on the verge of breaking or creaking in every direction. It's a foley library of rolls, pickups and general movement in each type of chair or seat. The library was recorded using the Shoeps CMIT5 and the Avedis MA5.

    20 %
    OFF
    Ends 1534543200
    Add to cart
  • Foley Real Outdoor Footsteps Play Track 13500 sounds included, 184 mins total From: $59

    REAL OUTDOOR FOOTSTEPS is part of our successful “Foleyart Collection” series. With an additional 13,500 externally recorded footsteps, this library offers unprecedented content!

    Sometimes there are problems with mixing when the Foleystage is too present. Outdoor recordings are difficult, so we have recorded at up to 2500m altitude in very quiet places of the Sierra Nevada in Spain and the Swiss Alps.

    These samples are also available as expansion for Edward Ultimate SUITE  and Edward Foleyart Instrument. In this case you need a full version of the instrument to use the expansion. Choose your desired package below!

    Key Features:
    • 13 500 outside recorded Foley sounds @ 24Bit, 96 kHZ
    • 25 combinations of shoes and surfaces
    • Different walking speeds and behaviors
    • WAV files are Meta ready (not included in EUS and EFI Expansion)

    Includes the following surfaces:
    Asphalt • Dirt • Deep Dirt • Grass Long • Grass Mud Mix • Grass Dry • Gravel Mix • Gravel Wet • Leaves • Rocks • Wood Mix • Wood Dry

    Includes the following shoes:
    Sneakers • Boots  • Sandals

    Performances:
    Extremely Slow Walk • Medium Slow Walk • Walk • Jog • Run • Stairs Slow • Stairs Fast • Stomp • Land • Scuff • Scrape 1 • Scrape 2 • Scrape 3

    Recording Equipment:
    Sennheiser MKH 416
    Neumann KMR 81i
    Sounddevices
    Rycote Windshield

  • A street fighter style sound pack featuring foley sounds for punching, kicking, slapping, body slamming as well as male vocal excursions for giving punches, taking punches, getting choked, powering up, victory and dying.

    20 %
    OFF
    Ends 1547334000
    Add to cart
 
Explore the full, unique collection here

Latest sound effects libraries:
 
  • Paper Paper (Kaibrary) Play Track 500+ sounds included, 267 mins total $40 $30

    This is a collection of various types of paper being performed in common actions like turning pages, crumpling, tearing, and other handling sounds. Included are more bizarre textural sounds using paper like violent flapping, buzzing, bowing, and squeaking.

    This collection also comes with two folders, a close up set of recordings, and a sister collection of medium-distant recordings back in the room. This is for use in background, like a person in an office turning a page over, a man shuffling a newspaper, or counting money on a table.
    Many of the sounds have been recorded at high resolutions for use slowed down for textural and slow motion use as well.

    25 %
    OFF
    Ends 1535752800
  • Trucks, Buses & Vans GMC Pickup Truck Play Track 42 sounds included, 23 mins total $39

    A grumbly old GMC pick up truck you might find on the farm, likely from the early 90’s. Exterior pass by’s, up and stop’s, start and away’s, idles, revs and doors.

  • Weapons Nocked Play Track 2047+ sounds included $85

    Whether your need to bring a lone rogue to life or a surge of arrows in an epic battle scene, Nocked will provide you with a plethora of flexible content.

    Our largest library to date, this collection is a comprehensive focus on the sounds and functions of the archer and the act of archery. Included are eight recorded bows (2 crossbows, olympic recurve, traditional recurve, longbow, long compound, short compound, and Magyar bow) with 2 additional 'mythic' bows of our own design, each using 3 types of arrows (aluminum, carbon, and bamboo) on 3 varying surfaces (hard, soft, and dirt) from 4 simultaneous recording positions (at bow, at target, midflight mono, and midflight stereo). Each bow and each arrow type have a character all there own.

    The content’s dynamic range is wide, from whispering bamboo arrows gliding on rests as they are drawn to firing position, to the powerful THWACK of crossbow bolts striking their target. All non-firing sounds were recorded in a controlled studio environment while all recordings of the bows being fired were taken on a plot of wide-open rural farmland, encompassed by forests. When needed, this ambient natural environment provided an ideal impulse response to be used in the design and editing of some of the sounds to create a heightened effect.

    Included are a wide array of archery actions and Foley:
    Nocking and unnocking arrows
    Drawing
    Firing (loosing)
    Mid-flight pass-bys
    Releasing / relaxing a draw
    Impacts on targets
    Arrow and accessory Foley (handling, selecting, gathering, dropping, etc.)

    A multitude of takes are provided across each bow/arrow/surface/position combination for easy randomization and differentiation of sounds, or to track any number of unique archers at any given moment.

    Go ahead, let them fight in the shade.

  • Environments The Netherlands Play Track 70 sounds included, 350 minutes mins total From: $50 From: $40

    Recorded over the course of two months this sound library features an extensive amount of Dutch ambiences including locations such as train stations, parks, cafes, streets and forests.

    All atmospheres run for approximately 5 minutes and were recorded at 24 bit/96khz using the DPA 5100 and Sound Devices 788T. This library is available in stereo or 5.0.

     

     

    20 %
    OFF
    Ends 1534543200
  • Foley Modern Seating Play Track 75+ sounds included $25 $20

    Modern Seating is a library compiled of a variation of modern chairs found in the office or home. The idea is to fill the need for chairs which aren't always on the verge of breaking or creaking in every direction. It's a foley library of rolls, pickups and general movement in each type of chair or seat. The library was recorded using the Shoeps CMIT5 and the Avedis MA5.

    20 %
    OFF
    Ends 1534543200
 
FOLLOW OR SUBSCRIBE FOR THE LATEST IN FANTASTIC SOUND:
 
                              
 
GET THE MUCH-LOVED A SOUND EFFECT NEWSLETTER:
 
The A Sound Effect newsletter gets you a wealth of exclusive stories and insights
+ free sounds with every issue:
 
Subscribe here for free SFX with every issue

Leave a Reply

Your email address will not be published. Required fields are marked *

HTML tags are not allowed.