Turnkey solutions to get your website and apps in order quickly
We make it easy to comply with the consent requirement of the GDPR while creating a competitive advantage through improved data processes, digital governance and customer experiences.
Uphold the User Experience
Customizable, pre-built templates that won't compromise the design of your websites and apps
The aim of the General Data Protection Regulation, or GDPR is simple: to give control of personal data back to the individual. However, complying with the law is anything but simple. That’s because the law is dense and complex. But it must be taken seriously, because the GDPR has real teeth to it. Penalties and fines can be as high as 4% of annual revenue or €20 million, whichever is greater. Among a long list of requirements included in the GDPR, companies must ensure their websites and applications comply with the regulation’s specific guidelines for website data collection.
For the law to apply, an organization merely has to offer its products or services to a European Union resident (including the UK), be established in the EU, or be engaged in widespread website behavioral monitoring. So, although the law emanates from the EU, because of its low triggering mechanisms, most enterprise organizations based in the US and elsewhere will have to comply regardless of where they are located.
Under the GDPR, personal data—including IP addresses, device identifiers and anything else that can be used to identify an individual—can only be collected if you have a “legal basis” to do so. The regulation, which is vast and far-reaching, mandates that companies and their partners who wish to track users without a legitimate legal basis, only do so once they have received unambiguous consent from those users. That’s where Crownpeak’s Universal Consent Solutions come in.
Crownpeak Trackermap provides a 360º view of all the third-parties with access to your website and application user data. This includes vendors you probably aren’t even aware of due to agreements your vendors have with their partners. Getting this visibility is the first step in complying with the law.
The Crownpeak GDPR Compliance Solution is based upon our existing patented technology – and is the first unified solution to help organizations achieve compliance with the GDPR and other privacy laws requiring notice and consent. Some of its capabilities include:
- Marries ePrivacy and GDPR consent requirements into a single user experience
- Deploys a persistent notice banner that disappears only once user has consented
- Displays granular and specific data collection vendors, and empowers the user with the ability to consent to each, all or none, as well as the ability to withdraw her consent at any time
- Allows only essential and necessary technologies to fire before consent is given, and then remaining technologies can execute
- Provides the user a gateway to exercise their GDPR-based privacy rights