|
|
|
|
|
|
by alt227
722 days ago
|
|
|
Have you read GDPR? I have many times, as I am a data controller for multiple companies. I urge you to go and read it, and then come back and continue the conversation. https://gdpr-info.eu/ This is an issue I regulary face, people not being educated on what the damn thing actually is. A general catchall banner on intial website load is the laziest and most intrusive way to get compliance, but its the easiest for developers so they generally take that way out. |
|
|
The way to ensure that you don't get sued is to copy the structure of the one website that you know is in compliance with the GPDR and follow their lead.
When reading the GPDR text from https://eur-lex.europa.eu/homepage.html I see a cookie banner. If it works there and that is the example of how to be in compliance with the obligations of a website for cookies? Would some other implementation that isn't done that way be risky in that the courts in Europe could decide that it wasn't done correctly?
Until the websites of europa.eu change to show an alternative way to be in compliance with cookie notification for the GDPR, banners remain the least risky (and yes, easiest and laziest) way to try to remain in compliance.
Nothing in the GPDR says "thou shalt have a banner" - but that's not the issue at hand. What is the least risky way for a company to implement the requirements of GDPR given that's the way europa.eu does it?