The new data protection regulations are present everywhere and this is the reason why cookies, that are used when you visit a website, need to respect GDPR and data privacy.
But first things first, what’s a cookie exactly? At Efficy, we attended a lunch event organized by CMS a Law Firm specialized in privacy, data security & data protection last week and we’ll try in this following blog to summarize their best practices and share advice that they gave us to you.
A cookie appears when you go on a website and you request information from it. When the website replies it sends a cookie which is put on your hard drive.
When you get online to return to the website, your computer sends the cookie back and it allows the website server to identify you and record data that can be shared with other “third-parties” (e.g. advertising…).
Let’s imagine a visitor comes to your website and you want to record his or her data, meaning for example that you want to know which page he or she visited, you’ll always need to think about these 3 following basic rules:
Best practice: Use immediately visible notice (BANNERS) that various types of cookies are being used by the website.
Best practice: Active Consent
See below some examples of the best options:
If we had to give you 6 key takeaways from our meeting with CMS there would be these ones: