EU’s general data protection regulation will affect your web services

2018/04/10

‘Much has been said about the GDPR. In a nutshell, it is a regulation from the European Commission that replaces the old data protection regulation and will, in equal measure, expand the existing policies. The many privacy rights provided by the GDPR mean that any person becomes the owner of any data collected about him or her. Should the individual choose to exercise those rights, the data collector or processor must be able to comply.’  Comment by Anna-Riitta Vuorenmaa, partner at Privago and Allan Sørensen, Chair of IAB Europe’s Policy Committee.

Whether you’re a big or small company you must get consent from your visitors to collect any information or data from them.

Even if you only have installed Google Analytics or social media sharing buttons like Facebook or Linkedin ‘like’ buttons on your site, you still have to ask consent from all who are visiting your site. When the consent is collected, our solution remember your visitors consent and don’t ask it again. Be aware that a company or a site owner still has the responsibility when applications or systems collects data. Many plug-ins and free tools usually collects user data and with this service you have control what information will be passed through.

Online Data collection governed by GDPR and the E-privacy directive:

– E-Privacy Directive sets the ’consent’ requirements
– GDPR requires ‘unambiguous’ consent through clear, affirmative action

If relying on implied consent, consider timing of cookie drop

But don’t worry, we have easy plug and play solution ready for you and your site.

If your site collect any personal information you just need to fill out one form and order a script to your site. After it has been installed, your site will be GDPR compliant.

Relevant Consent help you to easily comply with the GDPR and other data privacy regulations, assess privacy risk and to stop unauthorized website trackers from following your visitors.

Definition:

Cookies are mentioned only once in the EU General Data Protection Regulation (GDPR), but the repercussions are significant for any organisation that uses them to track users’ browsing activity.

Recital 30 of the GDPR states:

Natural persons may be associated with online identifiers […] such as internet protocol addresses, cookie identifiers or other identifiers […]. This may leave traces which, in particular when combined with unique identifiers and other information received by the servers, may be used to create profiles of the natural persons and identify them.

In short: when cookies can identify an individual via their device, it is considered personal data.

This supports Recital 26, which states that any data that can be used to identify an individual either directly or indirectly (whether on its own or in conjunction with other information) is personal data.

What it means

Not all cookies are used in a way that could identify users, but the majority are and will be subject to the GDPR. This includes cookies for analytics, advertising, social media and personalisation or functional services, such as surveys, recommendations and chat tools.

To become compliant, organisations will need to either stop collecting the offending cookies or find a lawful ground to collect and process that data. Most organisations rely on consent (either implied or opt-out), but the GDPRs strengthened requirements mean it will be much harder to obtain legal consent. The consequences of this were discussed during the 2016 Data Protection Compliance Conference and its findings described by Cookie Law:

Implied consent is no longer sufficient. Consent must be given through a clear affirmative action, such as clicking an opt-in box or choosing settings or preferences on a settings menu. Simply visiting a site doesn’t count as consent.
‘By using this site, you accept cookies’ messages are not sufficient for the same reasons. If there is no genuine and free choice, it is not a valid consent. You must make it possible to both accept or reject cookies.

This means:

It must be as easy to withdraw consent as it is to give it. If organisations enables visitors to block cookies who doesn’t want to give their consent, they first have to enable the visitor to accept cookies.
Sites will need to provide an opt-out option. Even after getting valid consent, sites must give people the option to change their mind. If you ask for consent through opt-in boxes in a settings menu, users must always be able to return to that menu to adjust their preferences.

Relevant Consent Unique Features

– All sites are unique and a visitor preferences are treated individually
– Full transparency for all services
– We help you – the solution is serviced and fully supported
– Handling all types of web services (Advertising, Analytics, Personalisation, Functionality, Social Media Sharing)
– Customise the cookie consent service to your website: design and style, wording, logo, categories
– A/B testing available
– Database of 1.160 trackers available
– Full GDPR and ePrivacy (when introduced) website compliance

Read more about the full solution here.

Read also:

Data traders’ drop out game has started?

2019/03/27

Last week, it was reported that Oracle has stopped selling AddThis data in Europe. Data traders who collect their data in contravention of the GDPR can still be found in bulk and we believe that the removal of AddThis is just a prelude. We will see significant market cleaning done during this and next year and the first signs of this are already visible in the Nordic countries.

Read more

How to improve the visibility of ad placements?

2019/02/27

Placement visibility plays a significant role in business on commercial sites. Ad visibility has for long been a hot topic among publishers, advertisers, and agencies. The visibility of the placements, or viewability, is measured by in-screen values. Paying attention to the visibility of placements can significantly affect your earnings. Bad in-screen values tell the publisher that at least these things need more attention.

Read more

Advanced programmatic reporting across multiple SSPs and Adservers

2019/02/27

Using multiple sales systems is a part of the everyday life for almost all media, especially in programmatic sales of advertising. Increasing the number of technology partners is necessary to achieve sales growth, but at the same time sales tracking and reporting gets more complicated. We solved the challenge by developing a tool that enables multiple SSPs and Adservers’ monitoring and reporting in one interface.

Read more

Relevant is more than ad-tech

2019/02/19

Relevant Digital Oy is well-known for setting up tools and technologies required for online advertising and for developing and commercialising online media. Ad servers, software vending and marketing technologies and the related know-how are an important part of our offering, but it does not stop there. In addition to tech projects, we regularly carry out demanding consultancy projects.

Read more

Where to pay attention to when you want to increase programmatic sales of advertising?

2019/01/24

Typically, programmatic sales means selling and buying online advertising, often using fully automated systems, thereby deviating from traditional sales processes that involve negotiating between people and handling orders. Programming advertising has been quickly adopted in different markets, making it easier, faster and more flexible to buy media inventory.

Read more