Google ändrar om i Analytics för att anpassa sig till GDPR

I veckan skrev Timo om fällan med Google Analytics och avsaknaden att kunna radera persondata. Nu lägger Google till funktioner som gör att du kan radera personliga data så att du kan fortsätta använda Google Analytics även under GDPR.

Så här skriver Google i sin uppdatering:

Today we introduced granular data retention controls that allow you to manage how long your user and event data is held on our servers.

Starting May 25, 2018, user and event data will be retained according to these settings; Google Analytics will automatically delete user and event data that is older than the retention period you select. Note that these settings will not affect reports based on aggregated data.

Before May 25, we will also introduce a new user deletion tool that allows you to manage the deletion of all data associated with an individual user (e.g. site visitor) from your Google Analytics and/or Analytics 360 properties.

This new automated tool will work based on any of the common identifiers sent to Analytics Client ID (i.e. standard Google Analytics first party cookie), User ID (if enabled), or App Instance ID (if using Google Analytics for Firebase). Details will be available on our Developers site shortly.

Google passar även på att uppdatera sin användarpolicy så att om det finns personliga data på deras server som du samlat in, så är det inte deras fel, utan ditt.

Google has been rolling out updates to our contractual terms for many products since last August, reflecting Google’s status as either data processor or data controller under the new law (see full classification of our Ads products). The new GDPR terms will supplement your current contract with Google and will come into force on May 25, 2018.

You can refer to to learn more about Google’s data privacy policies and approach, as well as view our data processing terms.