Security News > 2022 > July > Are your site’s tracking technologies breaking the law?

Those forces are tracking technologies and data privacy regulations.

Three pharmacies in Sweden recently reported themselves to the Privacy Protection Authority for deploying the ubiquitous Facebook "Tracking pixel" on their site and sharing consumers' personal data the pixel collected with the world's largest social network.

The European Union's General Data Protection Regulation and other regulations require companies to take a close look at their tracking technologies - or potentially face the wrath of regulators.

When seemingly innocuous data can easily be connected to extremely sensitive medical data, you can see why regulators with customers' privacy in mind have every incentive to be proactive in taking on companies that are not following the law.

Regulators have clearly stated that "Personal data that has been de-identified, encrypted or pseudonymized but can be used to re-identify a person remains personal data and falls within the scope of the GDPR." Your business could always make the argument that the data collected could not be used to "Re-identify" a person, but that's more a speculative argument than a technical one.

Once you have users' data, you must remember that a core principle of the GDPR is that data still belongs to those users-it's not yours.

News URL

https://www.helpnetsecurity.com/2022/07/12/site-tracking-technologies/