| 10 | | For 16 years, the best practice for the controller has been to first perform a cookie audit, and then set up a plugin to inform the user about what cookies are set, for what purpose, by what site (i.e. to make it clear what is first and third party cookies), and whether it is a session cookie or a if will remain after the session - and in that case, its duration). The usual method to inform the user is to show a popup with a link to the required information when the visitor first visits the site, and keep showing this popup until the user clicks "OK" to indicate consent. A lot of these plugins exists, but "Cookie Consent" by ''Catapult_Themes'' seem to do everything that is required by the GDPR. (There are probably lots of others that do the job equally well.) |
| | 10 | For 16 years, the best practice for the controller has been to first perform a cookie audit, and then set up a plugin to inform the user about what cookies are set, for what purpose, by what site (i.e. to make it clear what is first and third party cookies), and whether it is a session cookie or if it will remain set after the session - and in that case, also its duration). The usual method to inform the user is to show a popup with a link to the required information when the visitor first visits the site, and keep showing this popup until the user clicks "OK" to indicate consent. A lot of these plugins exists, but "Cookie Consent" by ''Catapult_Themes'' seem to do everything that is required by the GDPR. (There are probably lots of others that do the job equally well.) |