Privacy
Stay informed about online privacy best practices, data protection strategies, and how to build trust with your website visitors. Explore topics like data minimisation, user rights management, transparent data collection practices, and the evolving landscape of digital privacy across Europe, the US, and beyond.
Privacy Sandbox Explained: Google's Post-Cookie Advertising Framework
Google spent six years building Privacy Sandbox as a replacement for third-party cookies in Chrome. The initiative introduced APIs like Topics, Protected Audience, and Attribution Reporting - but low adoption and performance gaps led Google to retire most of them in October 2025.
Building a Privacy Programme on a Budget: Tools and Processes for SMBs
Small businesses face the same privacy regulations as large enterprises but rarely have the same budgets. A structured, prioritised approach to privacy compliance lets you address the highest risks first and build from there, without hiring a dedicated legal team.
Privacy-Preserving Analytics: Tools That Work Without Cookie Consent
Privacy-focused analytics platforms promise traffic data without cookies or consent banners. Plausible, Fathom, and Matomo cookieless mode each take a different approach, but the legal picture under the ePrivacy Directive is more nuanced than their marketing suggests.
Plausible vs Fathom vs Matomo: Privacy-Focused Analytics Compared
Plausible, Fathom, and Matomo each take a different approach to privacy-focused analytics. This comparison breaks down cookie usage, GDPR compliance, self-hosting options, and pricing to help you choose the right tool for your website.
The Philippines Data Privacy Act: A Compliance Guide for Website Owners
The Philippines Data Privacy Act (RA 10173) applies to any organisation processing personal data of Filipino residents, including website operators outside the country. This guide covers NPC registration, valid consent, breach notification, and practical steps for cookie compliance.
Oregon Consumer Privacy Act: Opt-Out Signals and Sensitive Data Rules
Oregon's Consumer Privacy Act (OCPA) stands out among US state privacy laws for its unusually broad definition of sensitive data and its requirement to honour universal opt-out signals from January 2026. Website owners processing Oregon residents' data need to understand these obligations now.
New Zealand's Privacy Act 2020: What It Means for Cookies and Tracking
New Zealand does not have a standalone cookie law like the EU's ePrivacy Directive. The Privacy Act 2020 and its 13 Information Privacy Principles still apply to cookies and tracking technologies whenever they process personal information. A 2025 amendment introducing IPP 3A adds new transparency duties from May 2026.
Montana Consumer Data Privacy Act: Compliance Requirements for Online Businesses
The Montana Consumer Data Privacy Act (MCDPA) has been in force since October 2024 and already received significant amendments through SB 297. This guide covers applicability thresholds, consumer opt-out rights, universal opt-out signal requirements, and the practical steps your website needs to take.
Local Storage, Session Storage, and IndexedDB: Are They Cookies Under the Law?
The ePrivacy Directive's consent requirement applies to all information stored on a user's device, not just HTTP cookies. Local storage, session storage, and IndexedDB all fall within scope. Understanding how regulators treat these technologies helps you avoid compliance gaps that a cookie-only audit would miss.