game-ci / documentation

📚 Documentation for GameCI open source projects
https://game.ci
MIT License
188 stars 119 forks source link

Privacy compliant tracking #280

Open webbertakken opened 2 years ago

webbertakken commented 2 years ago

We've recently introduced GA4. We use it to learn how our website is used.

We'll keep track of measures we're taking or still have to take to make tracking compliant. Note that we have no intention of tracking any personally identifiable information.

From this guide I understand the following:

ePrivacy Directive (EU “Cookie Laws”)

General Data Protection Regulation (GDPR)

It is possible to not track personally identifiable information (PII) at all. Some features need to be configured for that:

California Consumer Privacy Act (CCPA)

Has a different (more strict) rule for what "personal information" is. This makes the anonymous client ID fall under "personal information" under the CCPA, meaning GA4 is always affected.

However, you're free to collect personal information as long as you don't sell it.

Quote from that article regarding CCPA:

Generally, if you are only using GA data for reporting purposes within Google Analytics, then you wouldn’t be “selling” any of this data.

webbertakken commented 2 years ago

Any tracking experts in the community? Let me know if I'm somehow far off. It's a lot of information to sift through.

Ideas about how to most elegantly implement a cookie consent would be great. We use the docusaurus gtm plugin (not hard to understand)