All website owners\u2014whether individuals, companies, public organizations, or corporations\u2014must comply with the new guidelines from the Privacy Guarantor. This requirement applies even to inactive sites or those that haven\u2019t been updated in months or years.<\/p>\n
What are the main changes?<\/strong> Consent collection has also changed:<\/p>\n What are profiling and third-party cookies?<\/strong> How should the banner look?<\/strong> Is a cookie consent log required?<\/strong> What risks do I face?<\/strong> How can you help me be compliant?<\/strong> Try a live demo on our website or the very site you\u2019re visiting.<\/p>\n \"How does your plugin handle the preference log?\"<\/strong> We understand there\u2019s a lot of confusion<\/strong> about this topic, and we hope this explanation provides clarity<\/strong>. Where can I buy your software?<\/strong> All website owners\u2014whether individuals, companies, public organizations, or corporations\u2014must comply with the new guidelines from the Privacy Guarantor. This requirement applies even to inactive sites or those that haven\u2019t been updated in months or years. What are the main changes? To comply with GDPR principles and privacy by design, websites can no longer pre-install cookies […]<\/p>\n","protected":false},"author":1,"featured_media":8719,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[75],"tags":[],"class_list":["post-9071","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-compliance-updates"],"acf":{"visibilita_box_autore":false,"autore_associato":null,"elenco_faq_articolo":[{"domanda":"When did the new Privacy Authority Guidelines on cookies come into effect?","risposta":"The new Privacy Authority Guidelines have been in effect since January 9, 2022, and apply to all website owners, including private individuals, companies, and public or private entities, even if the website is no longer active or updated."},{"domanda":"How must user consent be obtained according to the new rules?","risposta":"Consent must be explicit, either through an 'Accept all' option or in a granular manner, cookie by cookie (not just by category). Consent through scrolling or passive actions is no longer valid. Users must be able to customize, accept, or reject cookies at any time."},{"domanda":"What characteristics must a cookie banner have to be compliant?","risposta":"The banner must be of adequate size without blocking navigation, contain a link to the extended privacy policy, include clear controls for acceptance, customization, and rejection, and must have an X in the top right corner to close the banner and reject profiling cookies. Without the X, the banner is not compliant."},{"domanda":"Is it mandatory to keep a record of users' cookie preferences?","risposta":"No, no cookie log is required. The Privacy Authority states that only the user's current choice needs to be stored, with no history. Consent cannot be requested within 6 months of the user's first choice."},{"domanda":"What penalties are provided for those who do not comply with cookie regulations?","risposta":"Penalties can reach up to 20 million euros or 4% of turnover, especially in cases of unlawful data transfer or non-compliance with the Privacy Authority's orders."},{"domanda":"What are profiling cookies and why do they require explicit consent?","risposta":"Profiling cookies are used to track a specific individual, action, or behavior and are used by platforms such as Facebook, LinkedIn, and Google for marketing purposes. Even free tools such as chats, messaging systems, or maps may track users. In all these cases, explicit consent is required; otherwise, it constitutes a violation."},{"domanda":"How does the My Agile Privacy\u00ae plugin work for managing cookie preferences?","risposta":"My Agile Privacy\u00ae tracks the user's choices through a technical cookie. The preference is stored for 6 months from the first access or the last update, after which it is deleted. No history of choices is retained: it is a snapshot in time, not a historical tracking record."}],"url_esterno":""},"_links":{"self":[{"href":"https:\/\/www.myagileprivacy.com\/en\/wp-json\/wp\/v2\/posts\/9071","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.myagileprivacy.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.myagileprivacy.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.myagileprivacy.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.myagileprivacy.com\/en\/wp-json\/wp\/v2\/comments?post=9071"}],"version-history":[{"count":5,"href":"https:\/\/www.myagileprivacy.com\/en\/wp-json\/wp\/v2\/posts\/9071\/revisions"}],"predecessor-version":[{"id":15163,"href":"https:\/\/www.myagileprivacy.com\/en\/wp-json\/wp\/v2\/posts\/9071\/revisions\/15163"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.myagileprivacy.com\/en\/wp-json\/wp\/v2\/media\/8719"}],"wp:attachment":[{"href":"https:\/\/www.myagileprivacy.com\/en\/wp-json\/wp\/v2\/media?parent=9071"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.myagileprivacy.com\/en\/wp-json\/wp\/v2\/categories?post=9071"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.myagileprivacy.com\/en\/wp-json\/wp\/v2\/tags?post=9071"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
\nTo comply with GDPR principles and privacy by design, websites can no longer pre-install cookies other than strictly technical ones. All profiling cookies must be blocked by default<\/strong> and can be activated only after the user\u2019s explicit consent.<\/p>\n\n
\nProfiling cookies are used to track individuals, actions, or behavior\u2014often for marketing and measuring KPIs in campaigns, as done by Facebook, LinkedIn, or Google. Even tools such as chat, messaging, or maps may collect user data. Explicit user consent is always required.<\/strong>
\nActivating cookies without user permission is a violation.<\/strong><\/p>\n
\nThe banner must be properly sized for the user\u2019s device, avoid hindering navigation (no \u201ccookie walls\u201d), and include:<\/p>\n\n
\nA cookie consent log is not required<\/strong>.
\nA registry typically means saving choices sequentially over time.
\nAccording to the Guarantor, you must record the user\u2019s current choice, but do not need to keep an ongoing log\u2014just ensure the user\u2019s choices are remembered for up to six months. Requests for consent should not repeat more frequently than this.<\/p>\n
\nRisks are significant: fines can reach \u20ac20 million or 4% of annual turnover (whichever is higher), especially for illegal data transfers or noncompliance with regulatory orders.
\nCompliance is complex. Even seemingly \u201clegitimate\u201d solutions may fall short, leading inadvertently to costly mistakes or violations.<\/p>\n
\nWe offer a WordPress plugin, My Agile Privacy\u00ae<\/sup><\/a>, designed to ensure compliance with these new privacy regulations.
\nKey features include:<\/p>\n\n
\nOur plugin tracks user choices using a technical cookie. These are stored for six months from the user\u2019s first access or last update, then deleted\u2014no historical record is kept. The log is a current snapshot only, not a record of past choices.<\/p>\n
\nIf you have further questions, contact us here<\/a>.<\/p>\n
\nIf you own a website, you can purchase My Agile Privacy\u00ae<\/sup> here<\/a>.
\nIf you\u2019re a web agency or privacy consultant, visit the dedicated reseller page<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"