Today is the day that the new EU General Data Protection Act (GDPR) comes into effect. You have probably noticed your daily visited websites updating their privacy policies. Companies that collect and use personal data of EU citizens will have to be upfront about how and why they collect your personal data. Also, providing options for users to opt-out, even after accepting a policy, is a must.
If you’ve been on the web for some time now, you probably know what a browser cookie is. Regardless, here is a short summary for those who might be unaware. An HTTP cookie is a small text file that is placed on your web browser or computer by web servers. When you visit a site for the first time a cookie is created. Then every time you come back to the same site it remembers what your preferences and activities were. These details may include your IP address, language preferences, login information, and what you did on the site. With General Data Protection Act, cookies are subject to change in order to protect EU citizens’ data.
What are the changes to the cookie policies?
- No more implied consent — companies must receive a clear consent from their users to track and use their data
- Withdrawal of consent — users must be provided an option to withdraw their consent as easily, as they provided it. No more hidden unsubscribe buttons.
- Data breach notification — if a company has their user data breached, they must notify their users within 72 hours
The team hopes that from now on, all of our worries regarding cookies would be whether you want a chocolate chip or sugar cookies and not how web cookies are handling your data.