After presenting two open source projects in part 1 of our article series on consent tools , this time Borlabs Cookie is under scrutiny – possibly the most common commercial consent tool (at least it is the most common on the websites decareto scanned). It belongs to the ecosystem of WordPress, the most popular content management system for websites, and […]
We are occasionally asked by customers which consent tool we think is particularly recommendable - especially when our DSGVO scanner decareto has found a misconfigured consent tool on a website, which often happens. So far, I've been reluctant to make recommendations because I can't answer the question. I know one tool well from my own […]
In an interview in December 2020, journalist Richard Gutjahr asked the president of the Bavarian data protection supervisory authority, Michael Will, to reject all trackers on the Süddeutsche Zeitung website as a test. The supervisor failed spectacularly because he allowed himself to be led astray by "dark patterns" in the SZ's consent banner. Believing in […]
The issue of "data processing in insecure third countries" has caused massive legal uncertainty among companies. If one is 100% accurate, then cloud services from Amazon or Microsoft should no longer be used at all, with unforeseeable consequences for domestic companies and administration. However, there is no reliable case law on this, and so for […]
The Facebook Pixel is one of the most used services on websites. It was launched in 2015 (here’s the link to the announcement), and the announcement made it clear back then what it was all about: […] a new way to report and optimize for conversions, build audiences and get rich insights about how people […]
More and more companies are receiving form letters claiming damages for the use of Google Fonts. We cannot give legal advice or tips on how to deal with these letters here, but again, prevention is better than cure. Check your own websites or those of your customers for Google Fonts with a few steps! Just […]
Scanning a website for illicit use of external services is not very difficult, since every web browser has built-in developer tools that can be used to detect snooping services (this is fully described in our e-book ). Mobile apps are a bit different - they also use external services, but this goes under the radar of most […]
Credit institutions are particularly heavily regulated and have well-equipped compliance departments. It can therefore be assumed that they also comply with applicable laws in terms of data protection. But, is this really the truth? decareto examined the websites of 28 of the largest banks in Germany and the result is sobering: no defects were found on only […]
With the DSGVO and the ePrivacy Directive (and maybe soon the ePrivacy Regulation), the EU has introduced regulations that have required a lot of implementation work from companies. Since the groundbreaking judgments of the European Court of Justice and the Federal Court of Justice in 2020, there have been increasing efforts by companies to make their […]
