Do you collect personal data or behavioral information from someone in an EU country?
 
Yes
No
 
 
 
 
 
 
 
Does your organization collect "personal data" -- EU-speak for what we in the U.S. call personally identifiable information (PII) -- as part of a marketing survey, (this goes beyond just financial transactions)
 
Yes
No
 
 
 
 
 
 
 
Is there any pages on your website in the language of that country or are there ary references to EU users and customers.
 
Yes
No
 
 
 
 
 
 
 
Is your company collecting “freely given, specific, informed, and unambiguous.” data (such as email addresses, cookies, etc) on citizens. Do you have a checkbox -- without a default “x” in it -- accompanied by clear language about what it will be doing with these email addresses?
 
Yes
No
 
 
 
 
 
 
 
In the event of a data breach (email addresses, personal data that contains sensitive data related to medical or financial information or identifiers associated with children) Do you have a process in place that would notify an EU regulator or “supervising authority” within 72 hours, including those affected in the breach?
 
Yes
No
 
 
 
 
 
 
 
First Name
 
 
Last Name
 
 
 
Email