The General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) is a privacy and data protection regulation in the European Union (EU) and will be enforceable from May 25 2018 and requires no enabling legislation so automatically becomes binding and applicable on that date
The GDPR imposes new obligations on organisations that control or process relevant personal data and introduces new rights and protections for EU data subjects.
The GDPR applies to data processing carried out by organisations operating within the EU. It also applies to organisations outside the EU that offer goods or services to individuals in the EU.
User Consent Under the regulation, publishers are required to ask EU visitors for their consent before storing or processing any personal information. The definition of personal information is also expanded to include unique identifiers, unique cookies as well as information that, by itself, would not be able to be used to identify a person, but could be used in conjunction with other information to identify an individual. For example, birthdate by itself does not identify an individual, but the combination of birthdate, zip code and gender could conceivably identify an individual.
User Data Access Publishers must provide individuals the ability to view the information that is stored about them and the ability to require deletion of that data.
Ads Nearly all ad networks use personal information in the delivery of ads. Google Adsense and DFP both have built specific methodologies for disabling ads targeting at individuals. It is the publishers responsibility to ensure that no ads that use personal information are served to people that have not given consent. On Ezoic versions, this app will help with those decisions.
The above information is not legal advice. The GDPR regulation is a lengthy, complex regulation and there are many parts to compliance. Here are a few links that we suggest reading: