You've probably noticed. Pop-up windows have been appearing for some time now every time that you enter on certain websites.
The question is often the same: «We use cookies to improve your user experience and provide you with personalised advertising. Please confirm that you agree to our privacy policy.»
On 25 May 2018, the European Union brought into force a new regulation on the personal data of Internet users: the General Data Protection Regulation.
The RGPD has several objectives aimed at website owners who collect personal data:
- Make it compulsory to obtain consent from Internet users
- Guaranteeing users protection and control over their data
Frequently asked questions : This is information that directly or indirectly identifies an individual.
For example:
- Name,
- Its IP address,
- His e-mail address,
- Her telephone number,
- Its demographic/geographical data,
Actions carried out on your website (clicks, visits...). The regulations have been in force since 2018.
Fines are starting to be levied on those who have not brought themselves up to standard: Here are a few examples
Don't delay! Especially qhe fine can be steep...
All websites established in Europe or aimed at a European audience must comply with this rule. Without exception.
1. Guarantee complete transparency for your users
- It is mandatory include a message about the use of cookies on your website.
- You need to inform your visitors in a way that clear and precise on the use of their personal data. And this applies to ALL pages where you collect personal data.
2. Gather consent from your users ... and be able to prove it!
- Compliance with the RGPD requires explicit consent of the user.
Let me show you an example: - Your users should also have a link to a page that details precisely the way in which data is collected and used.
Let's take a concrete example: Does your site use external services such as Google Analytics? Then you are obliged to inform users and ask for their consent. - It is essential to keep proof of the user's consent!
But how long is consent valid for?
- Cookies: 13 months maximum
- Personal data: No limits imposed
Don't be too quick to rejoice at this lack of duration ...
It is mandatory to keep proof of the user's consent to your conditions.
Let's imagine that one of your users, Thomas, signs up today. You collect his data. Some time later, Thomas complains to the CNIL. They ask you to provide proof of his consent. Wouldn't that be annoying?
3. Respect ALL your users' rights
The RGPD is very clear. Users have rights with regard to their personal data. Your users must be able to (easily) :
- access to it,
- modify them,
- delete them,
- limit their use.
4. Ensure TOTAL security for your visitors' personal data
The security of your users' data is essential. It's out of the question to neglect it!
It will therefore be essential to upgrade your website to « https ».
This protocol will ensure secure transfer of your users' data.
Guarantee FULL transparency for your users
- Redrafting or updating + addition of «Privacy policy» and «Legal information» pages.
- Addition of tools enabling your site to make discreet and effective use of your users' cookies.
Gather consent from your users ... and be able to prove it!
Installation of a system that collects and retains the consent of your users for ALL the functions on your site (contact form, newsletter, comments, etc.). All automatically!
Respect ALL your users' rights
Your visitors will be able to request the deletion or export of their data easily and effortlessly, and you won't have to do a thing!
Ensure TOTAL security for your visitors' personal data
Guarantee data security by installing an SSL certificate so that your site can switch to «https».