GDPR: what you need to know and what CWT does 2021 -

A lot has happened since the General Data Protection Regulation came into force in 2018. For this reason, we have updated our explanatory article with recent information.

In this article we have summarized the most important points you should know about GDPR as well as what each of them mean for your website. We also explain what features CWT offers to keep your website compliant.

Important: In this article, we will introduce you to what is new CWT is working on to help you make your CWT website GDPR compliant. For external widgets and services, contact your provider. Our intention with this article is not to offer legal advice. In fact, according to the legislation in force in The UK, CWT is not authorized to offer legal advice.

Why is the GDPR so important?

The General Data Protection Regulation causes some anxiety among website owners. This is understandable, on the one hand, as almost everyone will have to go through certain steps to make their pages compliant with new European legislation. However, the half-truths that run through the network make it difficult for many to exhaustively track the steps to follow.

There is no “simple fix” because providers like CWT are not allowed to offer legal advice. On the one hand, each case is individual and different. And secondly, legal advice is reserved for experts, that is, lawyers. However, we want to provide you with the best possible information within our possibilities and in the clearest possible way.

Who does this new regulation affect?

The GDPR affects any website that stores / processes / tracks personal data. The definition of personal data includes:

  • Names and surnames
  • Postal addresses
  • Email addresses
  • Telephone numbers
  • Dates of birth
  • Bank data
  • Location data
  • IP addresses
  • cookies

This broadening of the definition of personal data ensures that virtually all web page operators have to review their sites and adapt them if necessary. A web page will be affected by the GDPR if:

  • treats and stores IP addresses of your visitors
  • includes a comment function where visitors must enter their email addresses
  • your visitors can leave their comments on the website
  • includes a contact form
  • there are subscriptions or registrations for newsletters
  • the operator analyzes the behavior of visitors using tracking services and / or cookies
  • include social media plugins that are not in accordance with data protection

How do I find the data stored on my website?

Asking yourself the following questions will help you identify the personal data of your visitors that your website stores:

  • What type of data do you store / process on your website?
  • For what purpose or why do you collect this information?
  • How do you store the data?
  • Do you have a contact form, guestbook or blog articles with an active comment function?
  • Do you use Google Analytics ™ or any other statistical analysis service on your website? If you have enabled it, this also includes the CWT Statistics tool.
  • What widgets have you integrated into your CWT website? If you are using CWT, this point is only relevant for web pages created with CWT Creator, our web page builder for programming experts. You don’t have to worry about this with our modern website builder, as we have developed it to make your website and online store work without the need for programming.
  • What kinds of products or services do you sell on your CWT website?
  • Will products be created through your CWT website? (eg, digital merchandising)

If any of your answers indicate that you collect personal information in general or through these services, the rules of the GDPR will affect you.

What content does your privacy policy need?

The privacy policy is like a personal letter for your users, in which you describe the treatment that you are going to do with the personal data of your visitors. Therefore, the content of your data protection must be individualized.

It is recommended that a privacy policy include the following information:

  • The reasons and purposes of data processing on a web page.
  • The name and contact details of the person responsible for the site as well as the person responsible for data protection.
  • The legal legitimacy for data processing.
  • The recipients of the data.
  • The period of time for which the data will remain stored.
  • The intention of providing the data to third parties, even in another country.
  • The right to information and / or deletion of data.
  • The right of appeal to the competent authority on data protection.

In collaboration with Trusted Shops, CWT offers a Legal text generator for websites and online stores based in the EU.

What is the CWT Legal Text Generator?

Answer a few simple questions and our tool will automatically create personalized legal texts that comply with the GDPR for your website or online store. With this, you can stop worrying about how to write and update your legal texts and focus squarely on your business.

How does it work?

Just answer a few simple questions and the Legal Text Generator takes care of creating custom legal texts for your business that have the approval of experts. You do not need previous legal knowledge and your texts will be covered by the Trusted Shops guarantee.

What legal pages within your website are covered?

  • Privacy Policy
  • Legal warning

What legal pages within your online store are covered?

  • Privacy Policy
  • Legal warning
  • Return policy
  • Terms of use

Important information for all those who have an online store: You must verify the regulations of the sector for the type of product you sell; for example, the textile regulations for retail stores. In these cases, you can add the details to the description of your product. Unlike other generators, Trusted Shops guarantees that all legal texts comply 100% with the RGPD, so it gives you absolute protection.

Do you want to know more about this incredible tool? Take a look at our full article.

Note: Note: As a result of Brexit, the Legal Text Generator cannot be used on the CWT stores and sites of UK-based companies.

What about Google Analytics and CWT’s statistics feature?

If you have connected your website or your store with Google Analytics, be sure to mention it in your Privacy Policy. In addition, you should also offer a feature so that your visitors can reject this data collection. In addition, if you have your own account in Google Analytics, then it will be necessary to enter into a data processing contract with Google.

The statistics function CWT offers you is based on Google Analytics. If you only use this function on your website, a data processing contract with CWT is sufficient, as we already have a corresponding contract with Google.

What do I have to do if my page is storing data?

Once you have been able to determine that you are storing personal data on your website (see the definition in the section “Who does this new regulation affect?”), The next step to take into account is the following:

  • Is the storage taking place in compliance with the GDPR?
  • Should you remove the affected applications from your page?

In the case of external applications such as widgets, you should contact their providers to find out to what extent their service complies with the GDPR. If you are a CWT customer, this only applies to web pages or online stores created with Creator and not with our modern web page builder (which requires no programming). For this, we recommend that you let yourself be advised by an expert in legal matters.

In the case of the functions of our tool, including the guestbook module or the cookie notice among others, CWT is implementing changes that allow you to edit these options to comply with the GDPR. In the next section you can read more details about it.

There are several browser extensions, such as Ghostery or Privacy Badger, that show you which cookies your website uses as well as those used by external services that you have integrated into your site.

What are the new features CWT offers to help me?

CWT is currently modifying or integrating features into the tool that are compliant with the new GDPR. This includes functions that we are implementing in the system to help you adapt your website to the GDPR:

  • A link to your privacy policy for your forms and guest books.
  • Possibility of personalizing the notice about the use of cookies.
  • A new subpage for your statement about the use of cookies on your website. This subpage will appear automatically and includes an option for your visitors to reject certain cookies.
  • An editable privacy policy with formatting options.
  • A box with a link to your privacy policy in all your forms.
  • “Shariff”: tool to limit tracking in social network functions (only for web pages and stores created with Creator).

Where can I find more information about the GDPR?

In our help center you can find more details about GDPR and data protection at CWT. We have also included a list of recommended links to obtain more information on this new European legislation on data protection.

Although we are aware that these guidelines can be a bit general, since they cannot be adapted individually to each web page, our intention with this article is none other than to update you on the changes that the GDPR requires.

As the owner or administrator of a web page, you must verify if your contents comply with the new regulation. For our part, at CWT we continue to prepare our system to be up to date.

Start selling online with CWT

This article was originally published on May 21, 2018 and last updated on December 1, 2021.