|
|
|
|
|
|
by TrueDuality
993 days ago
|
|
|
Thank you. I have done so many implementations of GDPR. The cookie consent pop-ups everywhere are only needed because of how aggressive these third parties collect information (and that they _are_ third parties). Just don't collect PII beyond was is absolutely essential for your application, and don't share it with third parties. Bam you don't have to get consent. Knowing what classifies as PII is still a hard problem because its full of so many conditionals. Email is not PII unless you have some part of their name for example and it counts if your company receives an email from that person that includes their name in the From field. All the cookie banners out there are designed to make people weary of them into just accepting the previous practices. It's malicious compliance. |
|
|