AXIS Ref Apps from 6.11 supports Cookie Management powered by a third-party tool to make Ref Apps General Data Protection Regulation (GDPR) compliant.
This solution is integrated into the Ref Apps web platform, offering clients the flexibility to manage compliance efforts directly. Depending on the specific requirements identified during the onboarding process, clients can choose to enable this feature, tailoring the GDPR compliance measures to their needs. Some features will require an additional cost dependent upon the configuration chosen.
What is GDPR?
💡 GDPR is a set of regulations designed to protect the personal data of individuals within the European Union (EU). Regulations safeguard the personal data of EU users by establishing robust privacy practices that align with GDPR guidelines, including providing users with control over their data and maintaining confidentiality, integrity, and availability.
To comply with GDPR, if chosen by the client, Ref Apps will adhere to the following requirements:
- Obtaining user consent
- Providing transparent data practices
- Implementing adequate security measures
What are the key features?
Users are granted granular control over their personal data. This includes specifying consent for different types of cookies, such as essential, performance, advertising, and video analytics cookies, each serving distinct purposes and requiring varying levels of user approval under GDPR. The consent banner can be customized to match the look and feel of the Ref Apps.
The integration also aids in addressing other GDPR mandates, such as data subject rights management, enabling users to exercise their rights to access, rectify, or erase their personal data. Additionally, it supports the implementation of cookie consent mechanisms in line with GDPR guidelines, offering users detailed information about the cookies' purpose and impact on privacy.
Table of key features | |
---|---|
Consent management | The system provides a consent management framework that allows users to provide explicit and informed consent for the use of cookies and data processing activities. |
Cookie consent banner | The system displays a cookie consent banner or pop-up to inform users about the use of cookies and provide options to manage their preferences. |
User interface enhancements | The user interface of the app supports consent management features, including displaying cookie preferences, providing options to change consent settings, and informing users about the purposes and types of cookies used. |
Data subject rights management | The system enables users to exercise their rights as data subjects, including the rights to access, rectify, delete, and export their personal data collected through cookies. |
Anonymization and data minimization | The system implements measures to anonymize or pseudonymize personal data collected through cookies to minimize privacy risks. Additionally, it collects and process only the necessary data required for legitimate purposes. |
Incident response plan | The system has an incident response plan in place to handle data breaches promptly and effectively. It includes mechanisms for detecting, reporting, investigating, and notifying the appropriate supervisory authorities and affected individuals within the required timeframes. |
Examples of cookie compliance banner and preferences:
Example of scrollable list of cookies: