The "cookie banner industry" promises GDPR-compliant solutions that website operators rely on and are liable for. The EU's General Data Protection Regulation has been in force since 2018 and should create a common data protection framework for the countries of the European Union. To date, implementation by companies and enforcement via courts has been a lengthy and much-discussed topic.
The fact is that the collection of personal data on websites requires the active consent of visitors in almost all cases. Website operators are liable for the compliance of their websites with the GDPR and thus bear an economic risk.
A whole industry of providers has emerged, offering companies supposedly simple and secure solutions such as cookie banners and earning a lot of money with them. But with their technical approach of a one-for-all solution, these providers can never safely meet the highly complex requirements of the GDPR. Entrepreneurs are faced with a transparency problem: Does the chosen content solution meet the current requirements of the GDPR? Do all the people working on the website - marketing staff, editors, agency teams - deal with the issue of data protection in a sensitive and qualified manner?
The worst-case scenario: In the end, they alone are liable in court and, depending on the severity of the violations, must expect high penalties.
Where do websites collect personal data in the first place?
Tracking, analytics and retargeting for marketing purposes, plugins for displaying social media content, videos, podcast players and map services or even images and fonts: For websites, there are countless services and tools through which personal data is stored and processed directly or by third parties.
With the Scan & Banny data protection scanner, the KEMWEB team has made it its goal to enable all website operators to take the issue of data protection into their own hands. To protect them from lawsuits and thus business risks - and for the privacy rights of their website visitors.
A technology that simulates real visitors and makes unsolicited data collections visible.
The Scan & Banny privacy scanner is a web application that uses a new type of browser technology: It simulates a real person visiting the website for the very first time. In the process, it checks each of often hundreds of sub-pages and documents where data requiring consent may be collected in violation of the law.
After entering the website address and starting the scan, a detailed and objective report is available after a few minutes, depending on the size of the website. This contains all potentially critical sources in the form of cookies, external services and local memory. Contrary to the practice of common consent management providers, the results are not categorized or interpreted by Scan & Banny.
All legally relevant assessments can be made with the report as a website-specific "GDPR checklist" by the website managers together with data protection experts. Depending on the organization, these can be external or internal data protection officers, IT staff or law firms. All sources can be individually evaluated according to the current legal situation and gaps relevant to data protection can be eliminated. Subsequent scans show whether all measures were successful and enable regular analysis.
Our team of developers and data protection experts started developing the Scan & Banny data protection scanner in 2021. After an intensive test phase with web projects of our own customers and a diverse test group, the product was ready for the market in September 2022 and was successfully launched.
Our customers now include numerous companies - especially those with multiple or large, complex and dynamically growing websites. Scan & Banny offers them a unique opportunity to permanently monitor hundreds of new page contents and changes by a large group of people every month for their compliance with the GDPR.
Would you like to learn more about Scan & Banny? Then check out our product page and get a month of free scans, or: arrange a consultation directly with our data protection expert Nico Vidal Lago.