A new API concept for website owners and webmasters to comply with GDPR.
Ezycookie is the only cookie consent API that comprehensively complies with article 7.3 of GDPR, avoiding administrative sanctions.
The interested party is entitled to withdraw his/her consent at any time. Withdrawal of consent does not affect the legality of processing based on consent granted prior to withdrawal. Before providing consent, the interested party shall be informed of this.
WITHDRAWING CONSENT IS JUST AS EASY AS GRANTING IT.
Proactive responsibility, beginning with design and by default.
Along with article 25 of the GDPR, the principle of proactive responsibility compels the Entity’s data controllers to apply suitable technical and organisational measures, beginning with design and by default, for the Data Protection Management System, in order to guarantee effective protection of the users’ right to privacy.
Ezycookie is the only tool (API) that strictly complies with the European Regulation that places the user as owner of the data, barring legal exceptions, “AT ALL TIMES”.
How do cookies violate the user’s right to privacy?
RECITAL (30) of the GDPR describes the interrelation between cookies and privacy, set forth thus: “Natural persons may be associated with online identifiers provided by their devices, applications, tools and protocols, such as internet protocol addresses, cookie identifiers or other identifiers such as radio frequency identification tags. This may leave traces which, in particular, when combined with unique identifiers and other information received by the servers, may be used to create profiles of the natural persons and identify them”.
Principles of transparency and lawful and fair processing
On the other hand, Recital (39) of the GDPR sets forth that processing must be lawful and fair. It defines the principle of transparency and its scope, summarised as the fact that natural persons must be aware of the risks, regulations, safeguards and rights related to personal data processing, as well as how to exercise their rights in relation to said processing.
The user is owner of consent
In the enacting terms, article 7.3 of the GDPR egulates that the user is owner of his/her consent and must be able to withdraw consent as easily as it is granted.
The user may withdraw consent at all times
On the other hand, article 13 of the GDPR, dsets forth that when processing is based on prior consent for specific purposes or on explicit consent, the user is entitled to withdraw it at any time.
The user may immediately oppose processing
Moreover, article 21 of the GDPR in articulating the right to opposition, also sets forth that the interested party may oppose data processing at all times, and when the purpose of processing personal data is direct marketing, the interested party is entitled to oppose the processing of personal data concerning him/her at all times, including drawing up profiles to the extent that this is related to the aforementioned marketing.