Permission: Campaign entities
Privacy check is a checklist provided by Sourcepoint that helps your organization evaluate the configuration for your GDPR TCF first layer messages. Each line item in the checklist is intended to cover a necessary GDPR TCF requirement to keep your consent experience compliant with current regulations.
In this article, we will cover how to perform a privacy check on an existing GDPR TCF first layer message.
Note: Privacy check is a manual process performed by a member of your organization with appropriate access to the property. Sourcepoint currently does not support programmatic privacy check.
Click Messages on the left-hand panel and select GDPR Messages.
Click Web/Webview (TCF) from the subsequent menu.
Use the property field in the upper right-hand corner to select a property for which you will edit a first layer message.
Ensure the First Layer tab is selected and click the Edit icon inline with a first layer message on the subsequent list.
From the first layer message builder, click Privacy Check in the upper right-hand corner.
Use the subsequent dropdown menu to evaluate your first layer message so that it satisfies each requirement. There are currently eleven line items in the privacy check for the GDPR TCF first layer message:
|Storage and access of information||Does the 1st layer of the UI provide information about the storage and access of information from the user’s device by third-party vendors?|
|Processing of personal data||Does the 1st layer of the UI provide information about the processing of personal data by third-party vendors?|
|Example of personal data||Does the 1st layer of the UI provide an example of personal data processed?|
|Vendor count||Does the 1st layer of the UI show the number of the third-party vendors?|
|Scope of the consent choice||Does the 1st layer of the UI provide information about the scope of the consent choice, i.e. global consent, service-specific consent, or group-specific consent?|
|Withdraw their consent at any time||Does the 1st layer of the UI inform the user that they can withdraw their consent at any time and how to do so?|
|UI||Is the UI prominently displayed, covering most of the website content?|
|Direct link to vendors||Is there a direct link to the list of third parties in the 1st layer of the UI?|
|Accept and manage options present||Are there calls to action in the 1st layer for users to express consent (e.g. `Accept`) and customize their choices (e.g. `Manage options`)?|
|Equal weight of calls to action||Do the two primary calls to action on the 1st layer have matching text treatment and, for each, a minimum contrast ratio of 5:1?|
|Purposes and/or Stacks and Special Features||Does the 1st layer of the UI provide information about the Purposes and/or Stacks and Special Features used by third parties? (Either the Vendor List component is used (recommended) or text exactly reflects the Purposes and/or Stacks and Special Features used.)|
Toggle the button to the right of each line item as you finish your evaluation. Click Complete Privacy Check when finished.
Click Save Message to save the privacy check for the GDPR TCF first layer message.