News
Services
01/10/2023
The GDPR came into effect on May 25, 2018. This European regulation governing the use of personal data is now essential, but it remains largely misunderstood in terms of its substance. What exactly is the GDPR, and what does it mean for both the user and the company that owns a website? These are the points we will explore together.
GDPR stands for “General Data Protection Regulation.” You might also hear the equivalent term in French, RGPD (Règlement Général sur la Protection des Données).
The GDPR regulates the processing of personal data within the European Union and applies to any organization, whether based in Europe or targeting European residents, that processes users’ personal data.
The GDPR aims to ensure transparency for the user, who must know what personal data is being collected about them and for what purpose.
The user must be able to give their consent or, conversely, object to the processing of their data, and must be able to adjust this consent at any time.
They must also be able to access the collected information, modify their data, or request its deletion.
A website may contain users’ personal information. In fact, it is rare for a website not to collect any personal data. The GDPR, therefore, applies to this communication tool as well.
Here are some examples of user information subject to the GDPR that a website may collect:
To make your website GDPR-compliant, you need to provide the user with the ability to make choices for each element/action that collects information about them.
Certainly, this isn’t ideal for marketing departments, as user data available for analysis or marketing purposes is reduced, but the user’s explicit choice takes precedence.
There are three main functionalities to implement to give users this choice: the cookie banner, opt-in checkboxes on forms, and the cookie policy page.
Cookies are files that store data to be reused later. This is done to facilitate navigation on your site, but also for analysis or marketing purposes. A large amount of user data is thus stored and used through cookies.
These cookies are listed in a tool like a cookie banner, which categorizes the cookies into different categories (functional, statistical, marketing) with an explanation of each cookie’s nature.
Depending on the tool chosen, the user may authorize each category of cookie independently, or even each individual cookie in some tools.
There are many solutions on the market: Axeptio, Cookiebot, Tarte au Citron, … Some web agencies have even created their own cookie banners. Feel free to compare several tools to choose the one that best meets your site’s needs.
Implementing the cookie banner requires intervention from your developer, who must ensure that each cookie is triggered or not based on the user’s consent.
The other part involves obtaining the user’s consent for the data entered through the various forms on the site.
Whether it’s a newsletter sign-up form, a contest form, a brochure download form, etc., it is imperative that a checkbox is present to authorize the processing of the user’s data who fills out the form.
This checkbox must be opt-in, meaning the user must take the action to check the box, as opposed to opt-out, where the box is checked by default, and the user must uncheck it if they oppose the processing of their data.
The label must also clearly state the purpose of processing their data.
Example: “I wish to receive the monthly newsletter from XXX,” “I agree to be contacted regarding the quote request.”
The cookie policy page will gather all the useful information regarding the explanation of the cookies on the site.
On this page, you can find various information such as:
Any company that does not comply with the GDPR is exposed to sanctions.
Need an analysis or GDPR compliance review of your website? Contact us!
16/10/2024
Services
Strategy
Website
09/10/2024
Productivity
Services
Strategy
26/09/2024
News
Productivity
Services
Strategy
15/09/2024
News
Website
06/09/2024
Business Application
Productivity
Services
Business Applications
Website
eCommerce
Lead generation
Analysis
Subsidies
UX/UI design
Moodboard
Logo design
Design system
Technical Audit
SEO Audit
Custom Analysis
Structured Planning
Data Backup and Security
Efficient and Precise Migration
Optimization and Testing
Cutting-Edge AWS Environment
Staging and Production Environments
Dockerization and Replication
Enhanced Security
Optimal Performance
Self-Managed Infrastructure Monitored 24/7
Continuous Integration and Development Tracking