Test Automation and Robotic Process Automation
Exploring the differences between test automation (TA) and robotic process automation (RPA), as we head into the future in current markets, TA (test automation) […]
GDPR legislation mentions cookies in only a single instance throughout the 88 pages of its documentation, but that doesn’t mean they’re not incredibly important.
In fact, cookies are the cornerstone of how our data is collected and managed. It’s essential that businesses understand what they are, how they function, and the consequences of not delivering an appropriate cookie consent opt-in for their users.
Cookies are tiny text files placed in your web browser as you look at websites. They have a variety of uses and in themselves aren’t at all harmful. So, what’s the problem? And why does every website you visit have a cookie banner pride of place as the first thing you see?
Well, cookies store all kinds of data, which can be used to identify users without their consent, giving away private information that they’d prefer stayed private.
GDPR, the ePrivacy Directive (known as ‘cookie law’), and the European Data Protection Board (EDPB) dictate the practices every website must implement if they, at any time, will place cookies in a browser that gather the data of a European citizen.
Based on duration
Based on provenance
Based on purpose
For example: Names and surnames, home addresses, personal email addresses, identification numbers, location data, IP addresses, cookie IDs, mobile phone identifiers, and medical IDs.
For example: Racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union memberships, genetic data, biometric data, health and sex-life information, and sexual orientation.
Natural persons may be associated with online identifiers provided by their devices, applications, tools and protocols, such as internet protocol addresses, cookie identifiers or other identifiers such as radio frequency identification tags. This may leave traces which, in particular when combined with unique identifiers and other information received by the servers, may be used to create profiles of the natural persons and identify them.
In simpler terms, it means that any data gathered that could be used to determine who we are should only be collected if we say that it’s okay to do so. Given that cookies collect precisely those types of data, and that it’s considered our right to keep that information private, the websites must ask our permission before any such gathering or utilization can happen.
These are the determining factors of the cookie notice examples you see each day. Your policy may be linked to a banner or integrated into the cookie pop up requirements you need to consent to before accessing your desired pages.
The best way to understand what level of cookie control you need and how to protect yourself while gathering such data is to utilize a tool that determines the cookies in use on your website. With all the relevant information at your fingertips and a system that manages it for you, integrating the results directly into your policy, it means that you’ll never miss an instance that may leave you vulnerable.
GDPR states that each website must adhere to the following requirements.
You will have seen myriad ways of acquiring consent, during the numerous times each day you click ‘accept’ to remove the occasionally annoying cookie banner examples at the top or bottom of each page.
How you choose to present yours is down to the system you use to track and activate each of the cookies on your website and integrate them into your banner, pop-up, or policy.
The first consequence of GDPR non-compliance is that your users’ data and privacy are available for violation, and harvesting by data collectors. The second, and of far more concern to website operators, are the hefty fines and penalties delivered by GDPR.
GDPR has the power to deliver fines of up to 4% of an organization’s global turnover, or a flat fine of €20 million—whichever is highest.
If you don’t think that such fines happen in the real world and are merely empty threats to force the powers that be back into line, don’t be so quick to judge.
Whether you’re operating at a level subject to merit such monumental figures or not, the fines associated with your operation’s size are often enough to damage your budget and the health of your business significantly. Nobody should be running that type of risk.
Complying with legislation is a must if you want to protect yourself from potentially crippling fines and penalties.
PrivacyRun delivers an efficient and cost-effective solution that your business needs to keep your website data and cookie control in order.
Our package performs to all GDPR and CCPA legislation. Talk to one of our team about cookie consent examples if you’d like to dig a little deeper. It’s the complete package every data controller needs to continue trading with confidence, providing peace of mind for all partners—earning them a trouble-free night’s sleep, every night.