Connecting linkedin

GDPR FAQs - Cookies

5 months ago by Alison Owen

W1siziisijiwmtgvmdivmtkvmtcvmjmvmzcvoty5l0nvb2tpzsbrzxlib2fyzc5qcgcixsxbinailcj0ahvtyiisijiymdb4njawxhuwmdnjil0swyjwiiwib3b0aw1pemuixv0

What cookies are used on the Volcanic platform?

The Volcanic platform uses these cookies: 

  • volcanic_saved_jobs_id - This is used to store some jobs for users before they register on the website. These jobs can then be logged on the users account when they do register.
  • volcanic_rumble_uid - This cookie name is associated with Volcanics CMS platform tracking. It is used to track and record the unique actions of each user on the website. By default it has no expiry date. The main purpose of this cookie is: Performance
  • _user_logged_in - This cookie name is associated with Volcanics CMS platform tracking. It is used to keep the user logged in if they leave the website and return. By default it expires after the users session ends. The main purpose of this cookie is: Performance
  • _oliver_session - This cookie name is associated with Volcanics CMS platform tracking. It is used to track the users session on the website for Analytics. By default it expires after the users session ends. The main purpose of this cookie is: Performance


How do I find all the cookies that are on my website? 

There may be other cookies on your website. This is how to find them:

  • Go to the site's homepage and right click with your mouse anywhere on the page
  • Click Inspect in the the list that appears
  • Tabs will appear on the right of the page
  • Click the Application (over to the right)
  • Review the list on the left hand side and you will see a cookie icon - it even looks like a cookie - click on this until the arrow points down 
  • Then you will see your url again - click on this and your cookie list will appear on the page to the right hand side.


What do we need to do to comply with the cookie policy set in the GDPR?

First of all, it's important to understand the relationship between the GDPR and the ePrivacy Directive. In a nutshell, the GDPR provides overarching legislation to govern all aspects of processing personal information, whereas the ePrivacy Directive has a tighter focus on communications and internet services. This means in practice that it relies on the general rules of the GDPR and adds more specific requirements within its own remit. It will ultimately remove differences in interpretation of the cookie rules in different countries.


Where are cookies mentioned in the GDPR?

The GDPR mentions cookies once, in Recital 30:


Natural persons may be associated with online identifiers…such as internet protocol addresses, cookie identifiers or other identifiers…. This may leave traces which, in particular when combined with unique identifiers and other information received by the servers, may be used to create profiles of the natural persons and identify them.


What this essentially means is that cookies, where they are used to identify the device or, in combination with other data, the individual associated with or using the device, should be treated as personal data.


Privacy and Electronic Communications Regulations (PECR)

Cookies are governed by the Privacy and Electronic Communications Regulations (PECR) which sit alongside the Data Protection Act. In recognition of the forthcoming changes, the European Commission has launched a public consultation as part of a process for a revision of the ePrivacy Directive from which the EU cookie laws are derived. 


The PECR do not set out exactly what information you must provide or how to provide it – this is up to you. 


In regulation 6 of the PECR, it is set out that you should:

  • Tell people that the cookies are there
  • Explain what the cookies are doing and why
  • Get the individual’s consent to store a cookie on their device.

Under the PECR, to be valid, consent must be freely given, specific and informed, and must involve some form of positive action. This consent should be unbundled from other information in your website, such as your privacy policy. Consent does not necessarily have to be explicit ‘opt-in’ consent, as implied consent can also be valid, as long as users understand that their actions will result in cookies being set. Consent should be obtained from the subscriber or the user and, in practice, you may not be able to tell who is a subscriber or a user. The key will be that valid consent has been provided by one of them. 


Does the Volcanic platform comply with the cookie policy?

On the Volcanic platform, the first time a user visits your website, a pop-up cookie message will appear and prompts the user to take the positive action of clicking a button. As also mentioned above, consent does not necessarily have to be explicit ‘opt-in’ consent, as implied consent can also be valid, as long as users understand that their actions will result in cookies being set. Individuals can read the cookie policy on the candidate dashboard (as long as you have uploaded it in the Admin Area - Compliance).



How do I upload my cookie policy?

On the Volcanic platform, you will be able to set up all the messages you require, including your cookie policy, in the Admin Area - Compliance. The fields will be set up to allow free text, so that you may upload your own message titles and wording.


Volcanic is supporting the recruitment industry towards GDPR compliance. Make sure your and your team are trained in GDPR awareness using our free resources:  watch our GDPR awarenesss training video here.   





ABOUT 2 MONTHS AGO BY ALISON OWEN

W1siziisijiwmtgvmdyvmduvmtuvntavmtmvnja0l0deufigznj1c3ryyxrpb24uanbnil0swyjwiiwidgh1bwiilci0mdb4mzawxhuwmdnjil0swyjwiiwib3b0aw1pemuixv0

Since the GDPR became law last month, there's still confusion surrounding the more specific terms of the PECR Here, we set out to make things a little clearer for the recruitment industry. To give them their full title, the Privacy and Electronic ...

READ MORE

ABOUT 2 MONTHS AGO BY ALISON OWEN

W1siziisijiwmtgvmduvmzevmdgvntuvmzavnzmzl1njcmvlbibtag90idiwmtgtmdutmzegyxqgmdkuntuumtyucg5nil0swyjwiiwidgh1bwiilci0mdb4mzawxhuwmdnjil0swyjwiiwib3b0aw1pemuixv0

That’s the little big number so far across the Volcanic platform since last week; and that oxymoron really does sum up the mad rush post 25th May - Friday’s charge totalled 10 with further enthusiasm on the bank holiday being demonstrated by 5 req...

READ MORE

2 MONTHS AGO BY ALISON OWEN

W1siziisijiwmtgvmduvmtqvmtuvndmvndkvny9cscbpbnrlz3jhdglvbi5qcgcixsxbinailcj0ahvtyiisijqwmhgzmdbcdtawm2mixsxbinailcjvchrpbwl6zsjdxq

To further support our clients in meeting their GDPR obligations, Volcanic has launched a new integration with Bullhorn. This new service allows all our Bullhorn clients to integrate their GDPR consents directly and automatically from their websit...

READ MORE

5 MONTHS AGO BY ALISON OWEN

W1siziisijiwmtgvmdivmjivmtevmdcvmzivnti0l3nodxr0zxjzdg9ja18zotkyodg5ntuuanbnil0swyjwiiwidgh1bwiilci0mdb4mzawxhuwmdnjil0swyjwiiwib3b0aw1pemuixv0

In the second in the Volcanic GDPR video series we take a look at GDPR and security. GDPR compliance requires companies to take steps to ensure the ongoing confidentiality, integrity, availability and resilience of their systems, and to document t...

READ MORE