By using our services, you may consider whether it could pose a risk to the processing of personal data of your customers. This is why we have come up with this short guide explaining how to stay compliant with GDPR (General Data Protection Regulation) or CCPA (California Consumer Privacy Act) when using our services.
According to GDPR, you are the Controller of the personal data of your customers and since you share that information with us and we process it under your instructions, we are the Processor of such data. One of the duties of the controller is to notify the customers whose personal data you are processing through a privacy notice and also collect consent if you deploy cookies or similar technologies (including localStorage) into their devices.
This is why we advise you to communicate Outfunnel in your privacy notice as a third-party service provider who also has access to personal data. You should also bring Outfunnel up in your cookie notice by listing using localStorage. Also briefly describe what our technology is used for and how long does our localStorage persist in the customer’s browser.
This guidance has a purely informative meaning and does not carry any legal rights or duties.
Example of a clause about Outfunnel which could be added to your cookie notice
We use third-party marketing software Outfunnel in order to send our emails and manage our marketing campaigns. Outfunnel uses localStorage as part of tracking, so we would have information on the effectiveness of various marketing activities. Outfunnel also tracks activity on the website.
How does it work?
We embed a localStorage based tracking code on our website. When visitors come to the website, localStorage is placed in the web browser and the tracking code sends information to Outfunnel about that visitor’s web activity. Outfunnel also tracks opens of emails, clicks on any of the hyperlinks included, and other email activity.
What information does Outfunnel collect?
When tracking code is added to a page, Outfunnel automatically gathers the following information:
• Page visits
• Time of each page visit
• IP Address
• Referrer (Source, Medium)
• User ID
Example of a clause about Outfunnel which could be added to your privacy notice
We use Outfunnel as our third-party service provider in order to create email distribution lists and manage marketing campaigns. Such processing is covered with a data processing agreement protecting your personal data.
💡Is it possible to block the script unless the user gives consent?
Outfunnel doesn't have a built-in solution for this at the moment. The web tracking script is always tracking activity.
The above-mentioned process will allow you to block the Google Tag Manager script (Outfunnel's tracking code) if the user doesn't give explicit permission. This way, you'll know the script will only run when someone accepts the necessary cookies.