Product Updates

Introducing AMP support for Osano Consent Manager

posted on January 14, 2022

Capturing user consent to store cookies isn’t always as simple as running a standard JavaScript snippet. Some web frameworks require unique code to work properly. This is the case for AMP (previously referred to as “Accelerated Mobile Pages”). When it comes to capturing consent on an AMP page the standard approach doesn’t work. That’s why we are excited today to announce Osano’s support for AMP. You can now install Osano Consent Manager on your AMP pages and enjoy all the benefits of privacy compliance that you do on your standard websites.

What is AMP? 

AMP is an open source web framework for creating web content such as pages, emails, and ads, that run and load very quickly. Previously referred to as, “Accelerated Mobile Pages,” AMP pages tend to perform faster because they are simplified versions of the full page and most are delivered by Google's AMP cache. AMP works particularly well for mobile because it can load quickly even when someone has a spotty internet connection. AMP pages tend to rank well in search engines because of their high performance. In particular, media and content sites, such as Dallas Morning News, rely on AMP as a key part of their content distribution strategy. 

How does Osano Consent Manager for AMP work? 

AMP pages are built using framework components. Osano Consent Manger uses the amp-consent component. When building your page you include the amp-consent component script in your page’s <head> tag and include the amp-consent component itself in your page’s body. See the Osano AMP quick start for a complete set of step-by-step instructions. 

Osano Consent Manger for AMP Features

  • Share user consent between your AMP and full sites. Users only have to consent once.
  • Share your configuration between both sites as well. The same UI will be displayed and any changes will be applied to both.
  • Users may update their consent preferences through the AMP version.
  • Conforms to the amp-consent component specification so it is fully AMP compliant.

 

Why does this matter?

With Osano Consent Manager for AMP, you can now capture and manage consent across your standard and AMP pages using the same Consent Management Platform and the only consent manager backed by a No Fines, No Penalties Pledge!

Product(s) Affected

Consent Management

Availability

BusinessBusiness+Enterprise


Saudi Arabia and UAE banner updates

posted on January 4, 2022

Recent legislation requires a change to how cookie consent should be managed for users in the United Arab Emirates and Saudi Arabia. To comply with these new regulations, Osano Consent Management Platform (CMP) has updated the banners that are served to users in these regions. To enable the new banners on your site be sure to republish your configuration.  

Saudi Arabia has recently adopted the Personal Data Protection Law (PDPL), which will regulate data transfers and the collection, processing and sharing of personal data of residents and citizens of Saudi Arabia. The PDPL will go into effect on March 23, 2022, although additional regulations are expected. The new law provides rights to data subjects such as the right of access, correction and deletion, as well as the right to claim damages for material and non material harms. The PDPL requires consent for the collection of personal data, imposes data minimization principles and restrictions on retention as well as sharing of personal data. The maximum penalties of a provision of the regulations or rules are up to two years in prison or up to five million rials of fines. (Fines may be doubled if repeated offenses have occurred to up to ten million rials.) The law is clear that it applies to companies outside of Saudi Arabia that collect or process the data of individuals who are citizens or residents within the Kingdom.

Similarly, on Nov.  28, 2021, the UAE also enacted a comprehensive Personal Data Protection Law (PDPL), the Federal Decree-Law No. 45 of 2021 on the Protection of Personal Data Protection. The new law applies to the processing of personal data of residents whether or not that processing takes place within the UAE and includes a fairly strict requirement for consent prior to processing personal data. The new law also provides data subject rights such as the right of correction and the right to restrict or stop processing of personal information. In addition, requirements outline the cross-border transfer and sharing of personal data for processing purposes. The law establishes the UAE Data Office, which will be responsible for preparing policies, additional regulation and guidance. The law became effective on Jan. 2, 2022.

To help you comply with this new legislation, Osano’s default banner behavior has been updated to show different banners to users in these regions. Because UAE and Saudi Arabia’s new laws enforce similar user protections as the European Union’s GDPR, these regions will now use the same banner with the ability to accept all, reject all and customize privacy preferences.

Again, to enable the new banners on your site be sure to republish your configuration.  

 

Why does this matter?

Both Saudi Arabia and the UAE's new laws provide data subjects with more rights than they previously had, and the updated banners ensure you're allowing them to exercise those rights. The banners help you to:

  • Comply with both new laws.
  • Help data subjects feel empowered.

Product(s) Affected

Core Platform

Availability

BusinessBusiness+Enterprise


Updates to EU banners

posted on November 8, 2021

The regulatory landscape continues to shift as countries all over the globe continue to enact privacy laws. At the same time, regulators continue to issue guidance on how to best comply with the privacy rules those laws charge them with enforcing. 

Cookies, in particular, is a legal area that’s constantly in flux. Frequently, the debate is over when websites should be allowed to deploy tracking cookies on a website and for which purposes. Most importantly, how should websites deploying cookies communicate to end-users what’s happening with their data when they visit that site? That conversation is still evolving. 

The General Data Protection Regulation and the ePrivacy Directive are the governing laws here. But as companies experiment with different methods and designs to obtain consent to deploy cookies, regulators are getting more specific on rules for what the user interface should look like — at a minimum — to avoid regulatory scrutiny. 

Osano’s Consent Manager automatically displays a compliance pop-up to each end-user based on their geo-targeted location. Recently, EU regulators’ trending guidance indicates they want it to be as easy for an end-user to click “reject all” cookies as clicking “accept all.” And the Italian Data Protection Authority (known as the Garante) issued a requirement that goes a step further. The Garante has called for the presence of an “X” button within the cookie banner to symbolize the end-users’ ability to reject all but essential cookies.  

To ensure Osano customers can meet these new guidelines, the following will be added to the default banner experience in Belgium, Czech Republic, Denmark, Finland, Germany, Greece, Ireland, Italy, Netherlands, Spain and the U.K.:

 

  • An “X” allowing end-users to reject all tracking cookies. 
  • A “Reject All” button. 
  • A “Storage Preferences” link on the cookie banner’s first layer.

Here is what the Consent Banner for these countries looked like before:

Screen Shot 2021-11-05 at 3.15.24 PM

Here's what it looks like now: 

Screen Shot 2021-11-05 at 3.10.43 PM

 

 

Why does this matter?

Adding “Reject All” and an “X” to the consent banner in these EU jurisdictions and the U.K. positions Osano customers as compliant with the most recent compliance guidance from regulators. And including a link to more granular information about cookie deployment allows the privacy-focused end user to make a more informed decision on consent. 

Important: For customers using custom CSS to override the default banner experiences, we recommend testing this update on a staging site before publishing it to your production site to ensure there is no visual impact on your banner display.

Product(s) Affected

Core Platform

Availability

BusinessBusiness+Enterprise

1 2 3
of 3
The managed data privacy platform

Get started with Osano today

Explore Osano

What's New at Osano

Introducing AMP support for Osano Consent Manager

Capture and manage consent across your standard and AMP pages using the same Consent Management Platform.

Learn more about Osano for AMP

Saudi Arabia and UAE banner updates

Based on recent legislation in Saudi Arabia and the UAE, Osano Consent Manager now features updated cookie banners for both regions. 

Learn more

Introducing Secure Messaging Portal

Now you can communicate securely with your customers and users who make Data Subject Access Requests (DSARs) about their request in a secure and compliant way.

Read about the DSAR Secure Messaging Portal

EU banner updates

Based on new guidance from EU regulators, the default banner experience has been updated with a "Reject All button," a "Storage Preferences" button and an "X" for the following countries: Belgium, Czech Republic, Denmark, Finland, Germany, Greece, Ireland, Italy, the Netherlands, Spain and the U.K.

Learn More

Chinese banner update

China passed a privacy law recently. The Personal Information Protection Law comes into effect in Nov.1 , 2021. It requires changes for obtaining consent from users for tracking, analytics, personalization and marketing. 

learn more

View more product updates

Osano product & engineering teams have been hard at work. View the full list of all product updates.

View Product Updates