-
Posts
-
Hello,
today the EuGH (European Council) made a verdict about cookis and how to handle them.
As far as i see (and i have been informed from haendlerbund.de) does enfold not fullfill what we are supposed to do.Here is the message we got (only in german):
”Hintergrund
Mit Urteil (C-637/17) vom 01.10.2019 hat der EuGH einen Schlussstrich um die ewig währende Frage nach der rechtlich korrekten Verwendung von Cookies gezogen.Die Luxemburger Richter stellen klar, dass jedes Cookie der vorherigen Einwilligung des Seitenbesuchers bedarf. Ausnahmen bestehen nur in ganz engen Grenzen für die Cookies, die unbedingt erforderlich sind, um das Angebot zur Verfügung stellen zu können. Dabei macht es dann auch keinen Unterschied, ob es sich bei den in dem Cookie gespeicherten Informationen um personenbezogene Daten handelt oder nicht.
Eine wirksame Einwilligung muss freiwillig und aktiv erteilt werden. Ferner muss sie so formuliert sein, dass der Betroffene erkennen kann, in was genau er einwilligt. Im konkreten Fall war das Häkchen für die Einwilligung zur Verwendung von Cookies bereits vom Unternehmen gesetzt. Wenig überraschend entschied das Gericht, dass dies keine aktive Einwilligung darstellt.
Was bedeutet das Urteil für Webseitenbetreiber?
Technische Umsetzung
Die Einwilligung unterliegt bestimmten Anforderungen. Sie muss erteilt werden, bevor die Cookies gesetzt werden. Ebenso muss sie widerrufbar sein und sollte protokolliert werden.2 Checkliste
• Prüfen Sie, welche Cookies Sie auf Ihrer Webseite verwenden.
• Binden Sie auf Ihrer Webseite ein Consent-Tool (z.B. Usercentrics) ein.”
This is the link they gave us to explain what exactly needs to be done:
https://www.haendlerbund.de/de/downloads/cookie-einwilligung-how-to.pdfQuestions:
1: Does fullfill Enfold actually what is requested from the new Cookie-Law?
2: If yes – i need a clear explanation of how to setup the GDPR-section in Enfold since there are so many unclear settings (and the bumpy and unclomplete translation is doing to rest to confuse)thanx
MarcusI already tested the settings – and for my opinion – enfold works perfect also with the new regulation.
the option: Default Cookie and Services Option Settings –> must be set with “User must accept and must opt-in”.
but the end of the sentence is “only essential cookies selected” and i don`t know what that mean in this case?Hey,
Yes, it does. Please make sure you are using the latest version of Enfold which is currently 4.6.3.1 and refer to – https://kriesi.at/documentation/enfold/privacy-cookies/ :)
@awasner Essential cookies are all cookies needed by the site to work properly e.g. Enfold cookies for WooCommerce the cart etc. aviaCookieConsent and aviaPrivacyRefuseCookiesHideBar are the 2 basic cookies needed to hide the message bar permanently on returning visits to the site but blocks all services and other cookies.Cheers!
YigitThe link you provided is from 2018 and refers to the GDPR.
But 2 days ago there was a verdict from the EuGH which is very new and quite very diffferent from all which has been valid the last year.
Example:
Its not allowed to set any cookies before the user opt in.
This is totally different to the last year.So please confirm that your feature fullfills the actual law – made at 1.10.2019 by EuGh and provide me with a link to a best practice example
Thanx
PS: here is an example of how it should be regarding to what my lawyer said:
Can this be done with Enfold?
Hi,
On May 25, 2018, the General Data Protection Regulation (GDPR) came into force
Link is not from 2018, it is just the date when GDPR came into force :)
Enfold is GDPR compliant. You can see we have made improvements in most recent updates by searching “GDPR” here – https://kriesi.at/documentation/enfold/changelog/.
Best regards,
YigitMay i PLEASE have a link to an example??
I am an artist, not a nerd/techie.
Thanx for understanding
MarcusHi,
Thank you for the update.
The instructions in the following thread should help.
// https://kriesi.at/support/topic/gdpr-again-how-to-make-a-proper-cookie-consent/#post-1145596
The recommendations there should disable all cookies on initial load, so users have to opt in first in order to load services such as youtube videos and google maps.
Best regards,
IsmaelIn the Enfold > Privacy & Cookies panel, look for the “Enable cookie consent messages” and set it to “Enable and show message bar”.
The setting Enable and show message bar…….. does not exist.
There is only:
Enable cookie consent messages
Disable cookie consent messages
Please dont provide me with incorrect or half correct information.
It wastes my time.
Thank you for understanding.What is the correct setting?
Marcus
You can then set the “Default Cookie and Services Option Settings”
This one also does not exist
I run Enfold 4631 und WP
https://bit.ly/31vteulHi,
Thank you for the update. And sorry for the confusion.
The name of the settings was changed recently, but they are the same. Set the “Enable cookie consent message” to the second option to enable the consent bar and the “Default Cookie Behavior” settings to the first option to enable all cookies by default.
Best regards,
IsmaelHi,
The short instructions above should enable the cookie consent message in the site and set the cookies to be silently accepted by default. However, if you want to configure more options and learn about the privacy settings and shortcodes, please visit the documentation.
// https://kriesi.at/documentation/enfold/privacy-cookies/
Best regards,
IsmaelYour documentation is not helpfull.
Please see how https://raidboxes.de/ did it
This is how it should be to fullfill the regulations of GDPR1: Can this be done with Enfold?
2: How can this be done with Enfold?Marcus
Hi,
Yes. Basic selections:
WP Dashboard -> Theme options page -> Privacy and Cookies Tab
Enable cookie consent messages -> Select Enable cookie consent messages
Default Cookie Behaviour: User must accept and must opt in, only essential cookies selectedScroll down to Modal Popup Window:
Display Modal Popup Actions: Open immediately on pageloadScroll down to Advanced options:
Check Show advanced options
Show reopen badge – make your selection
Auto Reload Page – make your selectionContent of message bar and modal popup – Fill in text and use buttons you like/need.
Also read the description text provided in each section.
In oncoming 4.6.4 there will be a few more enhancements. See https://kriesi.at/support/topic/enfold-upcoming-fixes/
Best regards,
Günter“Footer Settings” as a header for the default GDPR-modal window???
Really????This is the result of [av_privacy_cookie_info id="" class=""]
http://marcusjeroch.de/screens/dsgvo2.jpgas far as i know there must be informations about..
– what does the cookie does
– why do you set it?
– how long is it stored/lifetime
How can i do this?besides that:
The way it displays is strange with all these %2 and % — seems as if there is something wrong with the way it handles entities?
How to fix that?I still dont know – and i cant figure it out neither in Enfolds Tutorial nor in @guenter |s explanation how i provide a user the buttons for accepting, refusing certain cookies
here are some detailed questions:
1: What is “Auto Reload”? When do i need it? Why?
2: It seems as if – at least for the essentiell cookies – the default is on “Accept” – otherwise the button would not be green. (please explain!!) – its the result of [av_privacy_allow_cookies]
http://marcusjeroch.de/screens/dsgvo3.jpgHow can i show a user which cookies are planned to be set by my website before he agreed???
if i dont tell them – how can users make an informed decision??Hi,
as far as i know there must be informations about..
The privacy shortcode can only display information that are readily available in the local storage. And please note that not all these cookies are set by the theme. They can be from a plugin, an API or a third party script, so it’s not possible to have all the information about the cookies that a certain site will have.
how i provide a user the buttons for accepting, refusing certain cookies
This is a list of all the available privacy shortcodes that you can use in the privacy modal popup window or directly in your privacy page.
// https://pastebin.com/RLGw1aqz
To create a refuse/accept cookie button, you will need one or two of these shortcodes.
[av_privacy_cookie_info id="" class=""] - adds a list about used and accessable cookies in domain with value and additional info about the cookie [av_privacy_accept_button wrapper_class="" id="" class=""]your button text[/av_privacy_accept_button] - adds an accept cookies button [av_privacy_accept_all_button wrapper_class="" id="" class=""]your button text[/av_privacy_accept_all_button] - adds an accept all cookies and services button [av_privacy_do_not_accept_button wrapper_class="" id="" class=""]your button text[/av_privacy_do_not_accept_button] - adds a do not accept cookies button [av_privacy_modal_popup_button wrapper_class="" id="" class=""]your button text[/av_privacy_modal_popup_button] - adds a button that opens the privacy modal popup window - you have to enable cookie consent message barYou can also configure them in the Privacy & Cookies panel — under the Buttons section of the Cookie Consent Message Bar settings.
How can i show a user which cookies are planned to be set by my website before he agreed???
You can either enable the privacy Modal Popup Window or try to direct your users in your privacy policy page by creating another button in the Cookie Consent Message Bar > Buttons panel. You can set the Button Action to Link to another page — your privacy policy page. There is also a boilerplate or a default setting for the modal popup window, which is pretty straightforward. You can use it as is or edit it as you wish.
Best regards,
IsmaelHi,
you missed some questions.
Would you mind to answer them?In addition:
What do you mean by “You can either enable the privacy Modal Popup Window”. I already enabled the Cookie-Modal-Popup. Is there another popup??Hi,
you missed some questions.
Which question? This is why we don’t recommend including multiple questions in a single thread. Please open a new thread for each inquiry.
Is there another popup??
No, there is no other popup. If the Modal Popup Window is not enough to inform your users what the kind of cookies they can consent to, then you can direct them to a privacy policy page.
Best regards,
IsmaelHi,
Thank you for following up.
What is “Auto Reload”? When do i need it? Why?
1.) After accepting the cookies, users have to refresh the page first in order to see the map properly or play a video directly in the site. You can however auto reload the page so that users don’t have to refresh the page manually.
It seems as if – at least for the essentiell cookies – the default is on “Accept” – otherwise the button would not be green. (please explain!!) – its the result of [av_privacy_allow_cookies]
2.) There are three options in the Enfold > Privacy & Cookies. The first one allows you to enable or store all cookies without the users’ explicit consent — all cookies will be silently accepted on page load. The next option enables all essential cookies by default — users can manually opt out if they want to. And the last option is probably what you’re currently using, which is why the other cookies are not enabled by default or why it’s not set to green as you put it.
Best regards,
IsmaelAnother one you missed:
How can i show a user which cookies are planned to be set by my website before he agrees???
if i dont tell them – how can users make an informed decision??Hi!
How can i show a user which cookies are planned to be set by my website before he agrees???
That is the purpose of the modal popup window and your privacy policy. You can use these mediums to describe the site’s policy and inform users with regard to the cookies or services that they are about to consent to. Again, the modal popup window and the privacy policy has a default template or boilerplate that you can use as is, but you can also edit it to comply to the site’s requirements. That is unfortunately outside the scope of support. If you’re still not sure what to do or what to put in your privacy policy page or the modal popup window, then we recommend that you consult a lawyer.
If you have any additional questions at this time we kindly ask that you open them up in a separate thread. The longer threads get in the forum, they become more difficult to support as they tend to drift off topic and they also make it troublesome for users trying to search for solutions. Keeping threads relevant to their original inquiry ensures that we can keep better track of what has been resolved and that users can more effectively find answers to similar issues they might be experiencing.
Thanks!
Best regards,
Ismael
- You must be logged in to reply to this topic.