How to check the transport encryption of a website
There are many ways to be affected by security vulnerabilities in your own website. Potential targets range from the network infrastructure to the operating system and system software (such as the web server and database) to the web application in the back and front end. For data protection officers, however, the means to examine a […]
How to find problematic cookies on a website
Checking for unauthorized cookies has been a central point in every website audit. In this article, we will highlight the steps that will help you to check a website for this: Dealing with consent management platforms Consent tools have established themselves as the means of choice for obtaining consent on websites – and for giving […]
Why companies should start checking their website for accessibility today
Very few companies in Europe have paid much attention to the topic of “accessible websites” to date, and we at decareto are no exception. To change this, the European Commission has passed the “European Accessibility Act” (EAA), which aims to make everyday products and services accessible to people with disabilities. This means that accessibility will […]
How to Avoid the 6 Most Common Mistakes When Designing Your Consent Banner
Consent banners are found on almost every website, but many companies still make mistakes that not only affect the user experience but also pose legal risks. Here are the 6 most common mistakes and how you can easily avoid them: 1. Lack of Access to Legal Information and Unclear Data Processing A common mistake in […]
Shopify and GDPR Compliance
What is Shopify? Shopify is a cloud-based e-commerce platform that allows merchants to create and operate online stores without any programming knowledge. Shopify takes care of hosting and administration. Shopify stores can be easily expanded with accounting, logistics, marketing or legal security functions via an ecosystem of external “apps” that can be integrated into your […]
Cloudflare and GDPR Compliance
What does Cloudflare do? Cloudflare is a US company that provides a content delivery network (CDN) and other services that make websites more scalable and perform better. Cloudflare’s service essentially consists of DNS servers and “reverse proxies”. This ensures that websites are not delivered directly from the company to users, but via Cloudflare’s intermediary servers, […]
Strictly necessary cookies: How do you recognize them?
Cookies are a much-discussed topic when it comes to data protection. Many articles explain what cookies are, but inaccuracies often lead to misunderstandings on this topic. In this blog post, we take a closer look at technically necessary cookies and try to shed light on the small but important nuances. What are strictly necessary cookies […]
Non-deletable cookies on social media
Websites can set indelible cookies when they are accessed from a social media app. The reason is a technology that many users are completely unaware of. On Twitter, LinkedIn and other social media, the majority of posted messages are not text, images or video, but shared links to external websites. The platforms don’t like that […]
How SMEs can check their websites for security vulnerabilities
How SMEs check websites for security vulnerabilities Small and medium-sized enterprises are often helpless when faced with the task of ensuring the security of their web applications. Yet there are many ways to protect web presences from attackers – even for SMEs with a small budget. This article presents the most important options for testing […]
Google Analytics Alternatives: 9 GDPR compliant tools
Overview of privacy-compliant tools Companies and private website providers in Germany and other countries can choose between several web tracking services that meet the requirements of the GDPR and European data protection authorities. Below, we present these privacy-friendly tracking providers in more detail. In doing so, we address the background of each provider as well […]