Source: vpnMentor article, EPCI
It’s been nearly 2 years since the Council of the European Union, European Parliament and the European Union passed the privacy legislation known as the General Data Protection Regulation (GDPR).
Does the Data Correlate with Sites that are Compliant with the EU Cookie Law?
During the course of our research, we also investigated whether these sites were in compliance with the EU internet cookie regulations that were recently passed into law. The cookie pop-up notifications, or “cookie-pops,” require a pop-up window to appear on any site using cookies to collect information on the websites’ users.
Once again, we were surprised as there seemed to be no correlation between the sites that use the cookie-pops and the sites that are GDPR compliant. Germany – a country that topped our list on GDPR compliance – was at the bottom of the cookie-pops test with just 16% of website employing this privacy feature.
Our hypothesis was that there would be some kind of correlation in the data between these two studies. Had web owners just used a third party code and inserted it into their website, we’d understand that both GDPR and cookie-pops would be similar.
For some sites, there may be a good reason for not having the cookie-pops enabled on their site, such as they don’t collect cookies. Interestingly in Slovenia, which had the highest percentage of cookie-pops enabled – 64%, only 40% of the sites were GDPR compliant, meaning that at least 60% of the Slovenian sites will be in violation of the new regulation.
If your website isn’t GDPR compliant yet, you can go here and copy/paste the GDPR policy into your website to avoid any legal issue you may otherwise encounter.
EPCI website adoption of GDPR
EPCI passive-components.eu website has adopted the EU GDPR policy as part of its web upgrade and move to secured communication https protocol.
the key EPCU website upgrade GDPR measures are including (selection of actions, not complete list):
- newsletter subscription reduced to email info (only necessary information about users are collected)
- all records of unsubscribed newsletter users are regularly deleted from the internal database and no records are maintained
- add information for users following the EU GDPR policy guidelines during all data upload (information handling, purpose, rights ….) – applicable for newsletter subscription, EPCI industry database registration and contact forms.
- advanced web security and web data protection
EU GDPR ready web sites, source: vpnMentor
featured image source: vpnMentor