GDPR Compliance Roadmap - steps taken

Updated 15th May 2021: This document lists the steps taken by thediamondcuts.com (hereinafter referred to as "This Website") in order to achieve GDPR compliance:

Read and the full text of the very complicated 261-page GDPR legal document (available here https://gdpr-info.eu/ ) DONE

Upload latest compliance roadmap (this page right here) to all websites. DONE

Update privacy policy. DONE

Update cookie policy. DONE

Provide way for visitor to view the cookies used. (Cookie-checker.com) DONE

Create and send privacy and information security tutorial to virtual assistants, training them in best practices for making sure info stays secure; make sure they have all read and signed. DONE

Deleted 10 of my websites because it would be easier to just scrap the least commercially successful projects than to make them compliant. DONE

De-installed Cloudflare CDN because it sets a cookie and there doesn't seem to be any other way to avoid this. DONE

Change Youtube embed code on all web pages that contain Youtube videos and put in new code that has the 'enhanced privacy' option from Youtube selected, that uses youtube-nocookie.com DONE

Study and implement best Adsense practices for not sending Personally Identifying Information: https://support.google.com/adsense/answer/6156630DONE

Replace method="get" with method="form" on all websites (for example in search boxes) and in all code on backup versions of sites. DONE

Delete Google Analytics entirely from the majority of my websites and replaced it with Plausible.io (non-tracking) analytics. DONE

Audit Google Analytics on the remaining websites to check that PII is not being collected / passed to Google via URLs, page titles and other data dimensions. DONE

Check all Google Analytics properties to make sure no-one else has access to the data via "users" in the GA control panel. DONE

Add recommended code to all analytics.js and gtag.js code blocks in order to anonymize IPs in Google Analytics, as per:
https://developers.google.com/analytics/devguides/collection/gtagjs/ip-anonymization
https://developers.google.com/analytics/devguides/collection/analyticsjs/ip-anonymization
DONE

Deleted Facebook tracking pixels and custom audiences completely DONE

Update all Aweber forms to clarify what is being consented to and give clear instructions on how to opt out either using unsubscribe link or manual request. DONE

Implement a GDPR compliant way to ensure that Adsense does not track users / remove ad personalization possibilities. IN PROGRESS - WAITING FOR ANSWERS FROM GOOGLE ON HOW TO DO THIS. Commentary here https://pagefair.com/blog/2018/googles-nonpersonal-ads/

Remove Facebook "like" plugin from all pages and replaced with non-tracking simple HTML link. DONE

* * * * *

Terms of Use & Disclaimer (updated May 15th 2021) | Privacy Policy | Cookie Policy | GDPR (you are here) | Homepage | Blog

© thediamondcuts.com 2021. All Rights Reserved.