Post by account_disabled on Feb 27, 2024 3:39:58 GMT -5
Let's focus briefly on that "introductory hat": the information for collecting consent. Is there a European or at least Italian model to conform to? No, unfortunately there isn't a model, not yet or at least I'm not aware of one. However, the basic indication remains: the GDPR says that the information must be easy and understandable (which, if we want, makes you smile because it always depends on who reads it). But let's say that yes, the information must be as streamlined and simply written as possible , because the interested user must be able to understand what leaving their data entails, for this reason it is necessary to use unequivocal language, to "educate him ” to understand what is being done with your data. While previously we had very detailed information, now we tend to make more agile information, for example a grid with a textual part and a part with the references of more specific articles for those who want to delve deeper.
GDPR 2018 privacy information If I'm not mistaken, especially abroad, some Panama mobile number list companies are also tackling the issue in a more creative sense, for example by entrusting the explanation of data processing to a video or infographic, and postponing the more technical text to a subsequent step. A kind of information in two parts. Yes, this is possible too. In general, it is true that the company is the owner of the data, but this does not mean relieving the user of responsibility who must still take the trouble to read what is included in the information. In terms of content, the information does not change much: article 7 of the Privacy Code - which in my opinion was already a good text - has been unpacked into several articles and the basic principles have been preserved. The information changes only because it must be as easy and understandable as possible, I don't know if even on a visual level. Let's stay on the topic of information and consent collection for a moment, let's give some practical examples? How should a company that collects the user's personal data (email, name and surname) to send email communications through its website behave? This is a classic example of privacy by design: according to the new regulation, consent must be informed, specific, free and revocable.
Therefore the purposes of the processing must be clear, for example with the words "By subscribing to our site you give us the possibility of sending you periodic emails with our news" and the tickable YES/NO check box. It is important that the check is already set to NO : to accept, the user must click on the "I agree/Yes" part and then change from NO, in this way the consent is also aware. This is to respond to the specific case. After that, under the data collection form there could be: The check box for consent to processing The check box relating to the receipt of newsletters the check box for receiving commercial information And so on, one for each processing purpose. For example, if direct marketing/direct contact activities are carried out, the contact method must be specified ("I would like to be contacted via email/sms/etc... always in Yes/No mode and always with the pre-set check mark on NO), with the subsequent possibility to be revoked. gdpr 2018 consent collection It is clear that all this forces the company that intends to carry out an e-mail marketing activity to adapt its tools and form fields to the minimum amount of data it will process, or rather to adapt the design to privacy.
GDPR 2018 privacy information If I'm not mistaken, especially abroad, some Panama mobile number list companies are also tackling the issue in a more creative sense, for example by entrusting the explanation of data processing to a video or infographic, and postponing the more technical text to a subsequent step. A kind of information in two parts. Yes, this is possible too. In general, it is true that the company is the owner of the data, but this does not mean relieving the user of responsibility who must still take the trouble to read what is included in the information. In terms of content, the information does not change much: article 7 of the Privacy Code - which in my opinion was already a good text - has been unpacked into several articles and the basic principles have been preserved. The information changes only because it must be as easy and understandable as possible, I don't know if even on a visual level. Let's stay on the topic of information and consent collection for a moment, let's give some practical examples? How should a company that collects the user's personal data (email, name and surname) to send email communications through its website behave? This is a classic example of privacy by design: according to the new regulation, consent must be informed, specific, free and revocable.
Therefore the purposes of the processing must be clear, for example with the words "By subscribing to our site you give us the possibility of sending you periodic emails with our news" and the tickable YES/NO check box. It is important that the check is already set to NO : to accept, the user must click on the "I agree/Yes" part and then change from NO, in this way the consent is also aware. This is to respond to the specific case. After that, under the data collection form there could be: The check box for consent to processing The check box relating to the receipt of newsletters the check box for receiving commercial information And so on, one for each processing purpose. For example, if direct marketing/direct contact activities are carried out, the contact method must be specified ("I would like to be contacted via email/sms/etc... always in Yes/No mode and always with the pre-set check mark on NO), with the subsequent possibility to be revoked. gdpr 2018 consent collection It is clear that all this forces the company that intends to carry out an e-mail marketing activity to adapt its tools and form fields to the minimum amount of data it will process, or rather to adapt the design to privacy.