Mautic can be configured to ensure compliance with the General Data Protection Regulation (GDPR).

[su_box title="Quick Links" box_color="#4e5e9e"]Consent to data collection | The right to view data collected | The right to have data transferred | The right to be forgotten[/su_box]

Consent to data collection

To ensure compliance with the principles of the GDPR, it is important that your contacts provide consent to having their personal data collected and used for the purpose you intend.

We recommend that you have a checkbox on your Mautic forms (or third-party forms that push data into Mautic) which allow contacts to opt-in, and which indicates this information within Mautic for auditing purposes.

1. Create a custom field for contacts - either Boolean or Select type, and labelled so that you can identify the contact as having opted into receiving communications (i.e. GDPR acceptance or GDPR opt-in)
2. Either edit your existing forms, or create a new form, adding a 'Checkbox group' field with the label being what the visitor will see when deciding to opt-in
3. Map this field to the custom field you created in step 1
4. Set the field as being mandatory (the field will be unselected by default, so the contact has to select it and submit the form in order to opt-in)
5. Add some text in the label field which explains to the user what they are opting to receive (e.g. 'I agree to be contacted in relation to this enquiry', or 'I accept the terms of communication')
6. Save and close the form

Image