Even if you live outside of the EU, If your website is designed to obtain personal information from people within in the EU, then your website must be fully compliant.
Any information contained herein is not legal advice and you should not rely upon it as such. The GDPR is a complex regulation and requires multiple actions from site owners. The contents of this article are intended to convey general information only and not to provide legal advice or opinions.
What does this mean?
As part of the new regulation, you must let your site visitors know how you collect, store, and use their data, in a clear and transparent way. In addition, you must comply with your site visitors' requests to receive a copy of their data that is processed on your site.
What do I need to do?
So, here are the main changes you will need to make for your new and/or existing websites (in no particular order)
Make sure all forms on your website are GDPR compliant
Make it extremely clear why people are giving you their details and what you are going to do with their information.
Make sure your third-party apps are GDPR compliant too