25. November 2022
DSGVO Website Checklist: What to look for on your Website

If you want to build a website for a business, there are some regulations you need to adhere to in order to make your website legally compliant. The DSGVO, which has been in effect since 2018, mandates these regulations in Germany. To help you know what to do to make websites DSGVO compliant, we've put […]

Read More
30. August 2022
Borlabs Cookie Consent Tool - Test 2022

After presenting two open source projects in part 1 of our article series on consent tools , this time Borlabs Cookie is under scrutiny – possibly the most common commercial consent tool (at least it is the most common on the websites decareto scanned). It belongs to the ecosystem of WordPress, the most popular content management system for websites, and […]

Read More
26. August 2022
Osano Cookie Consent vs. DP Cookie Consent - Test 2022

We are occasionally asked by customers which consent tool we think is particularly recommendable - especially when our DSGVO scanner decareto has found a misconfigured consent tool on a website, which often happens. So far, I've been reluctant to make recommendations because I can't answer the question. I know one tool well from my own […]

Read More
16. August 2022
TCF - Illegal Standard for Consent Banners in the Automated Advertising Business

In an interview in December 2020, journalist Richard Gutjahr asked the president of the Bavarian data protection supervisory authority, Michael Will, to reject all trackers on the Süddeutsche Zeitung website as a test. The supervisor failed spectacularly because he allowed himself to be led astray by "dark patterns" in the SZ's consent banner. Believing in […]

Read More
10. August 2022
Check if your Website processes Data abroad > 3 Easy Steps

The issue of "data processing in insecure third countries" has caused massive legal uncertainty among companies. If one is 100% accurate, then cloud services from Amazon or Microsoft should no longer be used at all, with unforeseeable consequences for domestic companies and administration. However, there is no reliable case law on this, and so for […]

Read More
9. August 2022
Does a Website use Facebook Pixel? - Verify FB Pixel Usage

The Facebook Pixel is one of the most used services on websites. It was launched in 2015 (here’s the link to the announcement), and the announcement made it clear back then what it was all about: […] a new way to report and optimize for conversions, build audiences and get rich insights about how people […]

Read More
3. August 2022
How to Safely Check if a Website contains Google Fonts

More and more companies are receiving form letters claiming damages for the use of Google Fonts. We cannot give legal advice or tips on how to deal with these letters here, but again, prevention is better than cure. Check your own websites or those of your customers for Google Fonts with a few steps! Just […]

Read More
29. July 2022
Find Data Protection Gaps in Mobile App - Step-by-Step Guide

Scanning a website for illicit use of external services is not very difficult, since every web browser has built-in developer tools that can be used to detect snooping services (this is fully described in our e-book ). Mobile apps are a bit different - they also use external services, but this goes under the radar of most […]

Read More
29. June 2021
Bank Websites - 80% have Data Protection Deficiencies

Credit institutions are particularly heavily regulated and have well-equipped compliance departments. It can therefore be assumed that they also comply with applicable laws in terms of data protection. But, is this really the truth? decareto examined the websites of 28 of the largest banks in Germany and the result is sobering: no defects were found on only […]

Read More