GDPR solution for public sector websites

GDPR solution for public sector websites

A free tool to protect your reputation and revenue

Tougher rules on how personal data is collected and processed – the EU General Data Protection Regulation (GDPR) – came into effect on 25 May 2018 and are here to stay (whatever happens with Brexit).

Organisations were notified in the run-up to the introduction of GDPR that if they didn’t take adequate steps to “think about and justify how and why you use data” – as the Information Commissioner’s Office (ICO) which regulates data protection in the UK says – they could face a substantial fine.

Coming up to the first anniversary of GDPR this has particular relevance for organisations carrying ‘programmatic’ digital advertising – like CAN’s partners in the Council Advertising Network. In a blog earlier this year, digital advertising and marketing website AdExchanger quoted a lawyer specialising in data privacy who said: “Data security and consent, particularly as it pertains to advertising and location tracking, top the agenda.”

Before you use any Personally Identifiable Information (PII) collected about someone online, you must either have a legal basis for collecting the data or have the user’s explicit consent. There are many technologies – including those used to deliver personalised ads – that need IP addresses or other information classified as PII under GDPR. These technologies require the user’s consent before receiving or storing PII data.

Many organisations leave themselves open to prosecution by having no, or inadequate, consent in place.

CAN’s free upgrade is all you need

CAN has adapted the IAB Europe Transparency and Consent Framework – the digital advertising industry’s accepted way of capturing consent to collect personal data – into a consent management solution for our partners to ensure you get all-encompassing, transparent consent upfront.

We strongly recommend that partners in the Council Advertising Network take advantage of this IAB-compliant tool FREE. Here’s why.

  • Protect your advertising revenue – how much advertisers pay for space on your website depends on targeting ads specifically to the viewer. If you can’t prove you have consent, they’ll deliver less lucrative, generalised adverts.
  • Increase your income from ads – some big-name companies – like Amazon – won’t advertise on your website at all without proof of consent. Having the new tool could give you access to these advertisers.
  • GDPR-proof and future-proof your whole website – our tool will ensure user consent for all your non-advertising content too, meaning less risk of a fine.
  • Enjoy no subscription fees – and the technology is simple to install too (see below).

How the GDPR tool works on your website

Whether you’re a council partner already signed up to GDPR protection, or have previously opted out, the new GDPR upgrade can be set up easily and quickly.

It takes about five minutes to go live once we’ve placed a piece of code on your website and dropped it into our system.

Then, when anyone visits your website, a message will pop up asking them whether they consent to personally identifiable data being collected (the sort of notice that comes up frequently when you’re browsing online). Their consent will be captured so it’s available for all technology on the website that uses PII.

The consent message will include your organisation’s logo and some of the wording can be customised. The message can overlay the whole screen or appear as a bar across the bottom of a webpage.

Regular users of your website won’t be asked every time they visit for cookie consent – only around once every six months.

You will also need to add a weblink to your website’s Privacy Policy so people can update their preferences at any time.

CAN we help ?

To see a live example of the new consent message, open an ‘incognito’ webpage in your browser and visit can-digital.netContact CAN if you have any queries about the GDPR tool or if you want to run it on your website.