GDPR COMPLIANCE

Turnkey solutions to get your website and apps in order quickly

We make it easy to comply with the consent requirement of the GDPR while creating a competitive advantage through improved data processes, digital governance and customer experiences.

Interconnected points around the globe

Uphold the User Experience

Customizable, pre-built templates that won't compromise the design of your websites and apps

The aim of the General Data Protection Regulation, or GDPR is simple: to give control of personal data back to the individual. However, complying with the law is anything but simple. That’s because the law is dense and complex. But it must be taken seriously, because the GDPR has real teeth to it. Penalties and fines can be as high as 4% of annual revenue or €20 million, whichever is greater. Among a long list of requirements included in the GDPR, companies must ensure sure their websites and applications comply with the regulation’s specific guidelines for website data collection.

For the law to apply, an organization merely has to offer its products or services to a European Union resident (including the UK), be established in the EU, or be engaged in widespread website behavioral monitoring. So, although the law emanates from the EU, because of its low triggering mechanisms, most enterprise organizations based in the US and elsewhere will have to comply regardless of where they are located.

Under the GDPR, personal data—including IP addresses, device identifiers and anything else that can be used to identify an individual—can only be collected if you have a “legal basis” to do so. The regulation, which is vast and far-reaching, mandates that companies and their partners who wish to track users without a legitimate legal basis, only do so once they have received unambiguous consent from those users. That’s where Crownpeak’s Universal Consent Solutions come in.

Crownpeak Trackermap provides a 360º view of all the third-parties with access to your website and application user data. This includes vendors you probably aren’t even aware of due to agreements your vendors have with their partners. Getting this visibility is the first step in complying with the law.

The Crownpeak GDPR Compliance Solution is based upon our existing patented technology – and is the first unified solution to help organizations achieve compliance with the GDPR and other privacy laws requiring notice and consent. Some of its capabilities include:

  • Marries ePrivacy and GDPR consent requirements into a single user experience
  • Deploys a persistent notice banner that disappears only once user has consented
  • Displays granular and specific data collection vendors, and empowers the user with the ability to consent to each, all or none, as well as the ability to withdraw her consent at any time
  • Allows only essential and necessary technologies to fire before consent is given, and then remaining technologies can execute
  • Provides the user a gateway to exercise their GDPR-based privacy rights
  • Developed in collaboration with data protection experts, leading privacy officers, brands, and policy makers, the solution is easy-to-implement, requires little to no coding besides adding a JavaScript tag to your site, and can be customized to reflect your branding and specific compliance needs
Recognized as a Visionary
2017 Gartner Magic Quadrant for Web Content Management
Download the report