Hi All,
This is mainly aimed at Australian tessitura users. How do you go about recording web customers opt-in to your privacy policy? A CSI? A checkout survey? And do you keep a record of every time they opt-in or just their most recent opt-in.
We are currently using CSIs and keeping a record of every instance. I find it a little unwieldy so keen to see what industry practice is.
Thanks,
Ronan
Hi Ronan,
Firstly, do you want to do anything with this data beyond just having that auditable record to prove that you are entitled to use their personal information according to your policy?
I would think it preferable to record the date of every occasion they opt-in rather than just the most recent because it's probably better for auditing purposes as your privacy policy changes over time. If you know every date that someone has opted in, you'll be able to know which version of your privacy policy they agreed to when, and will always know how you were entitled to use their personal information at any given time in the past. That's my opinion but perhaps other organisations are doing it differently and finding that it is adequate.
CSIs are generally easiest if using TNEW because that's how TNEW web forms store data by default, and using a web form allows you to have a required checkbox field that the user needs to agree to.
I'm actually not aware of what members with custom sites tend to do but would be interested to find out more as well. If this is for your custom site, one option might be to put a flag in the order notes using the API to indicate an opt-in. This would keep your CSIs screen a bit tidier and easier for your staff to scan visually. The downside is that in the event that you need to actually go back and find a record and date that somebody opted in, it's going to be a bit more difficult to find.
I'd be interested to hear from other organisations on this too but thought I'd throw in my 2c.