Go Back

GDPR compliance

January 29, 2018

The purpose of GDPR is to strengthen and unify data collection from individuals within the European Union, and replace the obsolete Data Protection Directive 95/46/EC.

It’s also the strictest data privacy law that has ever been introduced. And even though the list of involved organizations may suggest otherwise, the territorial scope of the new regulation is really broad.

GDPR will impact not only EU-based entities, but virtually every business dealing with customers (a.k.a. data subjects) within the European Union – both data controllers (e.g. companies) and data processors (e.g. cloud-software vendors).

How Piwik PRO can help you comply with GDPR

In order to configure Privacy Settings, please go to the Analytics Settings menu and then open Privacy tag.

Here you can customize Piwik to make it privacy compliant with existing legislations, by: anonymizing the visitor IP, automatically remove old visitor logs from the database, and providing an Opt-out mechanism for your website.

1. Respecting Do Not Track browser settings

Do Not Track is a technology that provides users with a simple and persistent choice to opt out of being tracked by websites and platforms they visit. The Piwik PRO Marketing Suite ensures you always respect your users’ right to restrict data processing.

  • the right to restrict processing

2. Providing you with extended Opt Out feature

With the Piwik PRO Marketing Suite you can generate a website form allowing your users to opt out of being tracked anytime they want. You can also extend the form with space for other Subject Access Requests concerning data access, rectification, and erasure.

  • the right to restrict processing
  • the right to access
  • the right to rectification
  • the right to be forgotten
  • the right to restrict processing

To provide your visitors with the choice of opting-out of Piwik Web Analytics, you can add the following HTML code on one of your website page, for example in a Privacy Policy page.

<iframe style="border: 0; height: 200px; width: 600px;" src="https://demoaccess.piwik.pro/index.php?module=CoreAdminHome&action=optOut&language=en"></iframe>

This code will display an Iframe containing a link for your visitors to opt-out of Piwik by setting an opt-out cookie in their browsers.
Click here to view the content that will be displayed by the iFrame.

3. Collecting and processing Subject Access Requests

Every consent, opt-out, and Subject Data Request performed by your users is stored in one place and presented in a clear form. It enables you to easily manage your users’ requests and demonstrate them to the authorities during audits.

  • the right to access
  • the right to rectification
  • the right to be forgotten

4. Full data portability

Your users’ data is stored in a way that ensures its full portability. Thanks to that your visitors will be allowed to easily obtain, move, and transmit all the relevant information collected by your marketing tools.

  • the right to data portability

5. Restriction of processed data

Piwik PRO Tag Manager enables you to define which information about your users you want to pass to your marketing tools and which you want to ignore. This feature is especially helpful in the case of visitors who allow the processing of only some kinds of personal data.

  • the right to restrict processing

6. Quick response to every Subject Access Request

Every Subject Access Request will be processed and resolved within the timeframe (at the latest within one month of receipt).

See more: