Minimum settings for UK site

  • Resolved the_lar

    (@the_lar)


    1 year, 3 months ago

    Hi there,

    Could anyone give me a little guidance for what my bare minimum settings for this plugin need to be in order for my UK site to be legal (I mean GDPR legal I guess?)

    I really want bare minimum unobtrusiveness… personally I hate cookie banners and I think most users do to, but I know they are a necessary evil. I don’t want lots of different options for ‘Additional’ or ‘3rd Party’ cookies if I can help it? One option to Accept/Reject is fine if that’s possible and legal in the UK?

    Do I need to list my sites cookies in the UK? If so, how on earth would I go about finding out what they are?

    Thank you!

    The page I need help with: [log in to see the link]

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Author Moove Agency

    (@mooveagency)

    Hello,

    Thanks for using our plugins.

    The legal aspect of cookies is a big subject and something we can’t advise on. Our plugin is a template and needs to be setup properly to achieve your goals.

    We recommend working with an experienced developer who will know what needs to be done.

    Hope this helps.

    Thomas Jarvis

    (@thomasjarvisdesign)

    If you are using tracking like google analytics, adwords, facebook pixel etc – Then you must allow users to opt-in before you start tracking.

    The problem area is – We are required to provide proof of consent in an audit – This means you need the premium version to include consent tracking and an audit trail should it be requested.

    I have raised an issue with Moove agency premium support about this – I dont think the threshold for proof has been met by this plugin – I.e. The premium version records IP addresses of consenting visitors alongside the email address of signed in users – However this is not proof.

    IP addresses for most people are shared IPs – This means that you couldnt actually prove a specific person consented – Just someone from the IP address which could be used by lots of users at the same ISP. Therefore not really evidence of consent.

    I am waiting for support to respond regarding this as most other premium GDPR plugins witrh consent logs add session data and user agents to the log or a unique key that can be recalled from the visitors browser to complete the evidence trail.

    Plugin Author Moove Agency

    (@mooveagency)

    Hi Thomas

    This forum is for the free plugin users, we’re not allowed to answer questions about the premium version here.

    You need to use our official support forum where we’d be happy to answer all your questions: https://support.mooveagency.com/

    Hope this helps.

    Thomas Jarvis

    (@thomasjarvisdesign)

    No problem I didnt expect you to. I was trying to help provide an answer to the question regarding minimum requirements for consent – Technically to be fully compliant you must record consent or make the cookie popup so intrusive that you cannot use the website without accepting it (Therefore proof of consent without needing a record of it).

    Otherwise just having a cookie on and off with explicit consent is technically not GDPR compliant because by law we are required to record proof of consent in some form that can be audited.

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Minimum settings for UK site’ is closed to new replies.