32% of firms in Ireland say they are “not prepared at all” for a future which will preclude them from using 3rd party cookies. In March of 2021, Google Chrome, the world’s biggest browser, announced the phasing out of third-party cookies, which are a key component of online advertising, and enable a company to effectively target particular audiences for their products or services. By late 2023, third-party cookies will no longer be supported on the search engine.
The Compliance Institute, who rolled out a survey of 144 compliance professionals within Irish organisations nationwide, say the results speak to a severe lack of communication between the two departments that will play the most crucial roles in ensuring that businesses successfully adapt to the new changes, namely the compliance and marketing departments. The lack of collaboration between the two could very well prevent the organisation from fulling its regulatory duties and meeting the requirement of data protection legislation.
Further highlights from the Compliance Institute Cookie Survey reveal:
- 6 in 10 say compliance and data protection teams within their organisation do not have a clear understanding of how 3rd party cookies are used within the organisation
- 46% say the compliance function within their organisation has little to no involvement in aspects of marketing such as first & third-party cookies and data capture
Speaking of the findings, Michael Kavanagh, CEO of Compliance Institute ,
“The findings highlight a sharp knowledge gap that exists within compliance and data protection departments of Irish organisations, and it seems that this is largely due to a communication blockage with the people in the business that are at the forefront of this type of data collection and utilisation i.e. those whose expertise and responsibility lies in marketing.
Major changes are coming down the tracks and there will be no getting around this. All organisations will be forced to change their practices, and find other ways to collect information needed to research the market and target key audiences while keeping within the boundaries of data protection laws.
But it is very hard to see how the GDPR requirement for data protection by design and default is being effectively implemented if nearly 6 in 10 respondents have little or no involvement in first- and third-party data strategies and data capture, and 32% have no involvement at all in the development of alternative strategies.
There is no way that these organisations can effectively prepare for the changes, unless they change their strategy and allow for and enable much clearer lines of communication.
Marketers need to do more to engage with their compliance colleagues. And compliance teams need to take the time to get to understand, what is, a fundamental part of their business, and one with a high potential risk for GDPR breaches”.