IDC Names Securiti a Worldwide Leader in Data Privacy
ViewListen to the content
On 13 July 2021, the Finnish Transport and Communications Agency (Traficom) released a consultation on the Draft Guidance on the Use of Web Cookies (Guidance). Traficom allows the public to comment on draft Guidance before their final publication. The comment and response period ends on 9 August 2021.
This article provides an overview of the Guidance that will help service providers implement legally compliant cookie consent solutions on their websites.
The Guidance applies to service providers that use cookies as well as other similar tracking technologies that allow reading and storing of the user’s data such as a built-in storage mechanism in HTML5, Flash player, tracking pixels, web beacons and various tags, and fingerprinting technologies.
Let’s look into some of the key points highlighted by Traficom in this Guidance:
All non-essential cookies and similar tracking technologies require the consent of the user.
Examples of such cookies are:
The user’s consent is not needed for the use of essential cookies or other corresponding technologies. Essential cookies are those whose sole purpose of storing and using data is to carry out the transmission of a communication over an electronic communications network or the storage and use of data is strictly necessary for the service provider to provide a service that the subscriber or service user has specifically requested. These cookies implement the transmission of a message through a network by identifying the transmission points required for routing the message, ensure the transmission of the message’s content to the destination in an appropriate order or detect errors or data losses occurring during the transmission of the message. Third-party cookies are generally not considered essential as they are not required to transmit messages.
The following are examples of cookies considered to be essential to provide a requested service:
Even in the case of the use of essential cookies, users must be adequately informed about them and their use is allowed only to the extent necessary to provide the service.
Consent to the use of non-essential cookies must be freely given, specific, informed and unambiguous. Non-essential cookies cannot be turned on in the service or site by default and the user must separately agree to their use by clicking on them (opt-in).
The following are not valid indications of consent:
Users must be able to withdraw their consent at any time without any detriment. Withdrawing consent must be as simple and easy as accepting cookies. For example, if consent was requested using a cookie preference center, the user should be able to easily reinvoke the preference center again at any time to change their cookie preferences by clicking on an icon visible on the page.
The service provider must be able to demonstrate that they have requested consent to store and use cookies and comparable data. For this purpose, the following must at least be stored:
However, no more data is allowed to be stored than is necessary to prove the obtaining of consent. Additionally, service providers must be able to justify the storage times of personal data since personal data can only be stored for the duration necessary for the purposes of its processing.
Users must be informed comprehensively and understandably of the use of cookies or other data that require the user’s consent. For this purpose, cookie consent banners should specify the following:
Service providers must comply with Article 13 of the GDPR concerning information to be provided to data subjects. In addition, the layout of the consent banner must be as neutral as possible. This means service providers must use equal font sizes and colors for accept and reject commands so that users are not misguided by consent banner design choices.
Securiti’s Cookie Consent Management Solution enables organizations to build cookie consent notices in accordance with the applicable legal requirements. It can help you comply with the Finnish Guidance on cookies with the help of the following features:
Ask for a DEMO to understand how Securiti can help you comply with Finland’s Guidance on Cookies and other similar tracking technologies, GDPR and a whole host of other global privacy laws and regulations, with ease.
Elegant Consumer Frontend, Fully Automated Backend, Privacy Regulation Intelligent Everywhere.
Looks like this email is already registered with an existing account.
Looks like there was an error completing your request, Please contact us here for further support.
Please do not close this window while we process your request
Anas Baig is a Product Marketing Manager with a proven track record in the cybersecurity industry. He has been a prominent contributor to numerous esteemed publications, including Infosecurity Magazine, CSO Online, Tripwire, Security Affairs, Network Computing, Security Boulevard, and several other renowned cybersecurity blogs.His in-depth knowledge and extensive experience in the industry make him a trusted source for cutting-edge insights and information in the ever-evolving world of cybersecurity.
Get all the latest information, law updates and more delivered to your inbox
November 10, 2023
When a person logs on to a website, the server assigns them a distinctive, user-specific identity. This identity is stored on the mobile or...
August 13, 2023
The global hunger for data collection is increasing exponentially. With businesses starting to collect more and more personal data, a rapid emergence in data...
August 10, 2023
When browsing the web, there's a high chance that you've come across a popup notification telling you that the website uses cookies. Many times,...
At Securiti, our mission is to enable enterprises to safely harness the incredible power of data and the cloud by controlling the complex security, privacy and compliance risks.
Copyright © 2023 Securiti · Sitemap · XML Sitemap
info@securiti.ai
Securiti, Inc.
300 Santana Row
Suite 450
San Jose, CA 95128