Unless you’ve been living off-grid for the last few years, you won’t have escaped the introduction of GDPR in 2018. Following some high profile legal cases, there are some changes that are now required to website cookies and privacy settings.
This standard was commonly deployed across all shapes and sizes of website, including these examples from Spotify and The Guardian:
This style of Cookie banner is still common, but it is no longer compliant.
In 2019 a case was brought before the Court of Justice of the European Union (CJEU) over a German lottery website called Planet49. The site was using a cookie notice similar to the examples shown above.
Here in the UK, the Information Commissioner's Office (the ICO) published additional guidance stating that website visitors should be given clearer information about cookies, should be able to ‘opt-in’ to their use, and should be able to edit their cookie choices and privacy settings at any time.
What are cookies and why do they matter?
Cookies are small files that are dropped onto a PC, tablet or phone when someone visits a website. Typically, they contain two pieces of information – the website name and a unique user ID assigned to the visitor.
When someone visits a website for the first time a cookie is downloaded (assuming the visitor has agreed to cookies). On future visits, the cookie is checked and information is sent back to the website which allows the site to tailor aspects of the current session based on previous visits.
For example, if you’ve been to an online shop and put something in your basket, but not checked out, the same item may be in your basket the next time you visit.
Other cookies are more sophisticated. Some track which pages you visit, how long you stay on a page, what links you have clicked etc. These cookies could be used for analytics and reporting, or could trigger email marketing or advertising on third-party websites.
The reason that cookies matter is because some people don’t want to share anything about themselves when they visit a website, even though the information is usually anonymous – and can actually improve a visit to a site.
What do I need to do to make my website compliant?
The cookie ruling is more than just a change the wording on a pop-up banner. The ruling also requires changes to the timing of when and how cookies are deployed, and it gives control to website visitors to edit their cookie choices and privacy settings at any time.
Cookies and privacy settings on websites need to be updated for the site to be compliant. Now is the time to update your site.
At Wisetiger we’re in the process of updating all of our client websites.
The process involves:
- A review of existing cookies and privacy notices
- Changes and updates to cookies, where required
- Install of a TYPO3 extension for managing cookie compliance
- Website visitors will be able to manage their cookie choices
- Content editors will be able to update the website cookie notices
- Rollout of a new cookie pop-up banner
- User guide for Typo3 editors to manage content changes on an ongoing basis
For existing clients, if you have any questions please contact your account manager or email email@example.com