GDPR compliance with XWiki's cookies consent application

20 Sep 2018 5 min read
Written by the XWiki Team

In light of the latest European General Data Protection Regulation (GDPR), our team has created a Cookies Consent application to help XWiki users ensure compliance. It is free to install and customize to match your brand identity. You can find installation instructions in our store.

But, first, does my organization need to be EU GDPR compliant?

There are two types of responsibilities regarding the protection of personal data: data “controllers” and data “processors”. It should also be noted that the personal data of employees is included in the scope of this regulation. So, the organizations that need to be EU GDPR compliant are:

  • Companies (controllers and processors) established in the EU, regardless of whether or not the processing takes place within the EU.
  • Companies (controllers and processors) not established in the EU offering goods or services within the EU or to EU individuals.

If your XWiki-based solution is serving individuals from the EU and you - or embedded third-party services like Google and Facebook - are processing any kind of personal data, you need to obtain prior consent from the visitor/user. To obtain valid consent, you need to describe the extent and purpose of your data processing in plain language to the visitor/user, prior to processing any personal data.

CookieBanner.png

How does it work?

The GDPR Cookie Consent app enables you to achieve and maintain cookie compliance. With this app, you can group all cookies into specific categories, from functional to marketing ones. You can set up a pop-up that asks for your user's consent to activate or disable the cookies or trackers.

Cookies can be grouped in the following categories, depending on the different tool types:

  • necessary: cookies which are mandatory and cannot be disabled;
  • preferences: cookies or trackers which are optional and enabled by default; they are only used to remember the user preferences;
  • statistics: cookies or trackers which are optional and enabled by default; they are used to record anonymous statistics;
  • marketing: cookies or trackers which are optional and disabled by default; they can record personal information.

CookieappAdmin.png

Configure the Cookie Consent app from the XWiki Administration

To configure the Cookie Consent app go to the Global Administration > Other > GDPR Cookie Consent Setup.

CookieAdmin.png

  • From the Administration, you’ll be able to see the accepted cookies for the current user.
  • You’ll be able to configure the look (bar or square) and the content (labels, descriptions, and call to actions) of the screen.
  • Most importantly you will be able to add the cookie scripts and trackers to the four categories (necessary, preferences, statistics and marketing).

CookieappAdmin1.png

Why should I install it?

Amongst the top advantages it has, the Cookie Consent app is free to install, use and customize to match your brand identity. It integrates seamlessly with XWiki, so you can set it up and relax knowing that you crossed cookies off your GDPR to-do list.

You may also be interested in: