Updated August 20, 2019.
With the enforcement of the General Data Protection Regulation (GDPR) on May 25 2018, obtaining proper user consent before processing any of their data is a vital responsibility for each and every website.
So, what is consent management?
How do you manage consent in GDPR compliance on your website?
What is valid consent according to the GDPR?
And is there such a thing as a consent management software that can do it all for you?
You'll find answers to all of these questions in this article.
Consent management is the act or process of managing consents from your users and customers for processing their personal data.
In other words, consent management means to enable for your users the ability to opt-in and out of the specific cookie categories (preferences, statistics and marketing), to consent and to withdraw their consent again if they chose to.
Consent management is really all about empowering your users to exercise their right to privacy.
A proper consent management system encompasses the following:
A consent management software like Cookiebot does all of this automatically.
Try the Cookiebot consent management software for free today.
The General Data Protection Regulation is an EU law that came into force on 25 May 2018. It affects all organizations, companies and websites, worldwide, that handle personal data of EU citizens.
The GDPR definition of personal data is very wide, and includes “any information relating to an identified or identifiable natural person”, including information that can be combined to single out or build a rich profile of a particular data subject.
Under this definition, statistics (analytics cookies) and marketing cookies (tracking cookies), as used by most websites, are subject to the GDPR.
This means that you need proper consent from your users prior to the setting of all cookies that track personal data. Your users must be informed about all tracking and consent to it before any data can be processed, says the GDPR.
Consent management is a key issue in the GDPR.
The GDPR definition of proper or valid consent is very clear and leaves a clear responsibilities on the shoulders of website owners and operators.
Consent & GDPR go hand in hand -
Article 7 of the GDPR treats the conditions for consent, and lists the following:
Real GDPR consent is thus informed, prior to any processing of user data, withdrawable and not on conditions of providing a service.
GDPR consent management is best done with an all-in-one solution, so that you can be sure that your website is compliant and your user's privacy protected.
You most probably do.
If your website makes use of tracking cookies, you need to obtain consent from your users first.
Is your website hosted, for example on WordPress?
Do you make use of Google Analytics or similar tools on your website?
Do you have embedded content on your site, such as YouTube videos or social media buttons?
Then your website probably sets third party tracking cookies on your users’ browsers, and you need to implement a consent management system, that makes sure that...
If you can answer yes to any of the above, you need consent management. The truth is that most websites today need consent management, because almost no website operates without the most basic tools for statistics, marketing or implementation of social media functions.
But consent management is not something you have to sweat about doing yourself.
Being non-compliant with the GDPR is, on the other hand, something you should sweat about: fines can reach €20 million or 4% of the annual global turnover of a company.
ePR & GDPR consent management is our niche expertise here at Cookiebot.
We take our responsibility of protecting privacy very close to heart, and our role as consent manager reflects this.
There exists a vast range of consent management tools that offer to manage your website’s user consents.
However, make sure to do your research properly and take care to choose one that is fully compliant and meets all of the above requirements.
Many of the consent management tools available - even amongst those that claim to be fully compliant - are not.
Cookiebot is a consent manager and fully compliant software-as-a-service that helps you scan, know and control your website's cookies and other tracking. We offer granular consent and full transparency for yourself and for your users.
Once a month, Cookiebot scans all of the pages of your website, by directing a number of simulated users, that activate and detect all cookies and other known tracking technologies in use on all of the pages of your website.
Read about all of the functionality and features, on our Functions page on Cookiebot.com.
In doubt about what cookies are in use on your website?
Try our free test that scans up to five pages of your website and sends you a report on the cookies and online tracking in use on these pages and gives you an indication of whether your website is GDPR/ePR compliant.
See if you need a GDPR consent management solution for you website and if Cookiebot is the right consent manager for you.