ePrivacy Assessment
For Businesses, Charities and Sports Organisations
An ePrivacy Assessment is for clients who need to determine their state of Compliance to ePrivacy Regulations.
Increasingly, customers are becoming more discerning when browsing online. They are increasingly noticing if you have cookie banner and will look for your Cookie and Privacy Notice. That means that more often than not, the first contact with your prospective clients or those wishing to challenge your approach to Privacy is through your website. And, it is up to you to be open and transparent about the use of personal information and data.
Our thorough assessment will review your businesses / organisations website to look for specific ecidence and documentation related to ePrivacy. This will look for (but not always limited to);
– Privacy information is easy to locate and is written in clear and plain language
– Assesses controller, processor and DPO details
– Key categories of data being processed documented. Is their purpose and lawful basis explained?
– Ensuring that there is lawful basis of consent. Including how its gained and the ease of consent withdrawal.
– Checks that the Data Subjects rights (erasure, rectification, subject access, compensation and portability) are effectively communicated
– Data retention and data transfers are described
– When Cookies are loaded, whether there is/is not a Cookie banner, are the uses of the Cookies clearly explained
– A report summarising the findings and providing high level direction is provided
An ePrivacy Assessment is appropriate for all micro and SME businesses, Sports Clubs/Governing Bodies and Charities/Third sector organisations. Our ePrivacy specialist will ensure that all the findings are tailored to your needs and delivered in a way that is simple for you to understand and implement.
Although it is extremely thorough, larger businesses may need an even more robust and detailed analysis of all of their data protection processes and documentation.
An ePrivacy Assessment is just the first-point – but the right step – of analysing your data protection practices. Ensuring that your business and organisation is not only acting in accordance with current legislation, but doing the best for the customers you serve. This means that it is as easy for customers to withdraw consent as it is to obtain it in the first instance.
The Cookie Law is a piece of privacy legislation that requires websites to get consent from visitors to store or retrieve any information on a computer, smartphone or tablet.
It was designed to protect online privacy, by making consumers aware of how information about them is collected and used online, and give them a choice to allow it or not.
It started as an EU Directive that was adopted by all EU countries in May 2011. The Directive gave individuals rights to refuse the use of cookies that reduce their online privacy. Each country then updated its own laws to comply. In the UK this meant an update to the Privacy and Electronic Communications Regulations.
If you own a website, you will need to make sure it complies with the law, and this usually means making some changes.
If you don’t comply you risk enforcement action from regulators, which in the UK means The Information Commissioners’ Office (ICO). In exceptional cases this can mean a fine.
However, non-compliance could also have other, perhaps more serious consequences than enforcement. There is plenty of evidence that consumers avoid engaging with websites where they believe their privacy is at risk, and there is a general low level of trust about web tracking by the use of cookies.
Compliance with the cookie law comes down to three basic steps:
We would be thrilled to hear from you