What to know about cookies
In this TechBlog we give some useful information to enlighten users, they have no legal value.
What is a cookie?
Cookies, small pieces of text placed on your computer when you visit a website, were created so that information could be saved between visits to a website.
They collect and store information about you based on your browsing patterns and information you provide as language preferences, your login to avoid logging in each time you visit a site.
Cookies can be very useful to avoid filling some information each time you visit your favorite site.
However, you are giving your personal information to the site owner and according to personal data protection laws, you should give your consent before such data transfer;
To illustrate, when you log in, several cookies are set up to save your login information and your screen display choices.
Login cookies last for days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for weeks. If you log out of your account, the login cookies will be removed.
in 2018, the General Data Protection Regulation (GDPR) was created as a European law that governs all collection and processing of personal data from individuals inside the EU.
While it is European Union (EU) legislation, organizations from Canada are not immune. Any website, even outside of the EU is required to comply with the GDPR if it collects data from users inside the EU.
GDPR provides that the user’s consent must be a freely given, specific, informed and unambiguous indication, given by a statement or by clear affirmative action.
What is considered as personal data?
Personal data refers to any information that relates to a “data subject” as identified or identifiable living person.
- Home addresses
- Identification card numbers (such as social security, passport etc.)
- Location data (localization through a phone)
- IP addresses
- Search and browser history
and sensitive personal data :
- Health and biometric data
- Ethnic information
- Political convictions
- Religious beliefs
- Sexual orientation
What about cookie consent ?
Under the GDPR, it is the legal responsibility of website owners and operators to make sure that personal data is collected and processed according to the law because one of the most common ways for personal data to be collected and shared online is through website cookies.
Websites must comply with the following GDPR cookie consent requirements:
Prior and explicit consent must be obtained before any activation of cookies (exception for whitelisted and necessary cookies).
Users must be able to activate some cookies rather than others and not be forced to consent to either all or none.
Consent must be :
- Freely given
- Easily withdrawn as they are given.
- Stored as legal documentation.
- Renewed at least once per year.
What does Altimex Consulting & Services Inc do about GDPR ?
As a Data Subject you have rights under the GDPR, Altimex Consulting & Services Inc. is fully respecting your rights regarding the processing of your personal data.
We are also available to assist you understand the process of having privacy rules and respecting the privacy of your customers, having compliant websites.
You must prioritize the following elements on your website :
- A information should be displayed that you are collecting data and what data you are collecting;
- Visitors must be given the choice
- to accept or refuse;
- to request a copy and/or deletion of the data;