The EU Personal Data Act, the GDPR, gives visitors to the website the right to obtain specific and up-to-date information about what information about them is stored, for what purpose and where in the world – along with the ability to prevent this.
- What types of cookies are set.
- How long they persist in your user’s browser.
- What data they track.
- For what purpose (functionality, performance, statistics, marketing, etc.).
- Where the data is sent to and with whom it is shared.
- How can cookies be rejected or the status of the cookies subsequently changed?
- First, cookies change frequently, which means that the policy not only needs to be updated, but also revised periodically.
- Second, cookies work out of sight and most web site operators do not even know which cookies are in use on their own web site.
- Thirdly, the majority of cookies are usually set by third parties, i.e. they have a different origin than the website itself.
- Therefore, it can be difficult to get a complete overview of all cookies on your website, what information they contain, for what purpose they are collected and where they go in the world.
We enable you to take care of everything that is relevant on your website with regard to cookies and GDPR. This way you can be sure that your website complies with the regulations.
The short and simple answer is yes.
First and foremost, the GDPR is a universal law for the European Union. This means that the GDPR covers not only all websites that operate within the EU, but also all websites that deal with EU users. With enforcement in May 2018, all sites that refer to local sites outside the EU will also be affected.
In a PwC survey of American multinational organisations, 92 percent stated that compliance with the GDPR has top priority, and 71 percent have already started preparations (as of January 2017). These include data protection guidelines, IT security and the discovery of all data held by companies.
As far as the UK in particular is concerned, it is still part of the EU at the time of enforcement of the GDPR. In addition, the UK government is preparing for a new Data Protection Act that will meet the same requirements as the GDPR, so the same rules will still apply after the UK leaves the European Union in 2019.
In the US, data protection laws are more fragmented because they are a patchwork of sector-specific laws, such as those relating to healthcare companies or financial institutions, or limited to certain states such as California. However, since the GDPR is the most thorough and far-reaching data protection regulation ever adopted, it is likely to serve globally or at least as a model for future data protection regulations.
Therefore, in any case, it is important to take all measures to meet the requirements. The regulations may be an annoying obstacle for businesses here and now, but in the long run they will help restore trust and fairness between businesses and consumers in a data-driven world.
First, you need to find out which cookies are used on your website. This is essential for creating a specific and accurate policy, as each website is different.
CookieFirst analyses all cookies on your website and sends you a report with a complete overview of all cookies used, including their purpose and origin.
The easiest way to do this is to choose a cookie solution such as CookieFirst, which includes the service of a constantly updated cookie declaration.