Back to all news

Google Website Data Protection GDPR Update

Its hard to find a businesses nowadays that doesn’t use Google Analytics for web traffic monitoring. Most businesses like using it. Web developers utilize it for site improvements while marketing agencies are in-love with its KPI filters. But like in any growing technology space, laws are catching up and putting business ethics front and center. In light of recent user tracking and identity protection scandals, Google is reminding businesses to come clean on how they track users because it is legally required to in certain markets. One such market in question is the European Economic Area (EEA).

On the 28th of April 2018 your webmaster ought to have received the email below from Google. Lets break this email down into simple terms.

Google Website Data Protection GDPR Update

Starting May of 2018 the new General Data Protection Regulations (GDPR) will be effective in the European Economic Area, commonly known as the European Union. Google is notifying you that it has made its solutions ready to abide by the regulation – Google Analytics.

Wait, what’s the GDPR again? Its a law made by EU members for protecting consumers and individuals data by giving them more control. Basically stronger rights on who gets their data, how their data is used, accessed and stored digitally. Its overall goal is to unify privacy regulations across the EU. It will change how marketers and data engineers store, transmit and manage consumer data – including Google Analytics.

Some highlights of GDPR
– Monetary administrative penalties of €20 million or 4% of worldwide revenue if your organization is not in compliance.

– Subjected to GDPR even if you don’t have a physical presence in the EU; if you provide goods or services to EU citizens, you are impacted.

– The definition of personal data is expanded and clarified to include IP addresses, cookie identifiers, and GPS locations.

– Explicit content and transparency is required; this means that inactivity and pre-checked boxes are not considered consent.
– EU citizens have the right to be forgotten and personal data must be erased upon request.

– GDPR is an opportunity to build trust and help your brand stand out.

Do not think think that somehow Google will look after GDPR compliance for your website. Google is certainly taking steps to be GDPR complaint but remember that using Google doesn’t erase your own GDPR responsibilities. Read our article on how you can attain GDPR compliance for Google Analytics.

In summary
This Google website data protection GDPR update is letting you know that Google has its analytics services covered, you need to provide some additional information to Google, you need still need to make your site GDPR compliant to avoid penalties. Remember, your website could have analytics and trackers from other third party software from your server, e-commerce plugins, your website core itself, etc. You would need a proper developer to help you with full level compliance.

Minimalistic Co-working Space Website

Your site has only a few seconds to evoke a response from a website visitor. This statement holds more weight now more than it did several years ago....