Avoid fines

Website GDPR

As of May 25, 2018, the GDPR law applies to all businesses, and we still come across many sites that are not compliant. We help you make your website secure and compliant.

Basic guidelines

GDPR rules for a website

How can I make sure my website is properly rated by GDPR?


Before a website can place and read out a cookie, you must give your consent. Websites that use cookies may not store data on users’ computers without the user’s consent. If you’ve accepted cookies from the same website before, you won’t have to be bothered with a notification again when you visit that site. The cookie banner should include an option to accept or reject all tracking cookies from the site.

Privacy Statement

A privacy statement helps your customers make informed decisions about how you handle their information. It should be clear, concise and easy to understand. A good privacy statement should explain what information is collected and why. It must also include information about who will use the information, whether the information will be shared with third parties, and under what circumstances it may be shared.

GDPR compliant Forms

Forms should be checked to make sure they are GDPR friendly. For example, there should be a link to the privacy statement and checkboxes should not be checked by default. For example, registrations to the mailing list may not happen automatically without consent and you must be able to show how you obtained registrations (so according to the GDPR rules, also in the past).

SSL Certificate

To implement the security feature on your website, you need an SSL certificate. An SSL certificate is a code that encrypts all information sent to and from your website. This ensures that no one can intercept and read the information. This encryption is the only way to ensure complete protection of personal data when making a purchase or filling out a form on your website.

Google Analytics

Once you have Google Analytics installed, the next step is to set up your site to collect visitor data without sending personal information. To do this, things like browsing behavior, user IP addresses and session information all need to be turned off. In this way, Google cannot identify individual users by their behavior or IP address and different sessions cannot be linked to the same visitor.