Newsletters and privacy

The General Data Protection Regulation (GDPR) came into effect on 25 May 2018. The CRM complies with the GDPR. If you work in the CRM, you do not need to worry about privacy legislation. If you work with the e-mailprogramme Interspire, you do need to take privacy legislation into account.

Interspire and the GDPR

This means that when you use Interspire or send emails or bulk emails, you must technically be able to prove that the Interspine owner of the email address to which you are sending your email has actively given permission for you to send this email to them (opt-in). If you are not able to prove this, you are not working in accordance with the GDPR and you will be personally responsible for any subsequent consequences (Interspire user/department). The following applies for email opt-ins:

  • The email address owner should have clearly and affirmatively consented to you using their email address (by way of a check box or newsletter sign-up form);
  • You will need separate email opt-ins if you wish to send emails for different purposes. For example, if you have only requested consent to send a newsletter, you will only be able to use that email address for newsletters and you will not be able to use it to send information about an event;
  • You will need to keep track of the email opt-in in order to be able to prove that the recipients have given their consent (if this information about the opt-in is required);
  • By law the email address owner has the right to withdraw the email opt-in. You will need to clearly explain to your contacts how they can unsubscribe from your emails (their consent should be able to be withdrawn as easily as it was given).

In actual practice, this means:

  • You must remove all email addresses from your Contact Lists that are unknown to you and for which you have never had any personal contact with the email owner;
  • You must always keep track of how and when you obtained these email addresses;
  • You will need to ask your email contacts if you can continue to email them; this can be done by providing the recipients with a clear explanation of which emails they can expect to receive. You will also need to delete all of the contacts who did not respond by agreeing to this request;
  • For example, when you send an email about registering for an event, make sure that you add a simple opt-in for the email contact’s other needs;
  • You will need to ensure that contacts are easily able to unsubscribe from every mailing list and that these people are not emailed again;
  • You may continue to email internal email addresses (any address that ends with ‘’) as long as this person has not unsubscribed from the list and/or made an objection. The best course of action here also involves opt-in registration. This only applies to email marketing (newsletters and invitations that do not contain any work-related content).


Need help? You can contact:

Contact department