Website Privacy Validation (4/6): Does my CMP effectively respect all possible consent profiles?

October 11, 2022/Blog

If you’ve followed along with our privacy validation series, you know that we've checked for the presence of the privacy policy, the “do not sell/share” link, and the cookie consent banner tag. The next thing you should ask is, “Does my consent management platform (CMP) effectively block/allow specific cookies and tags based on user-specified consent preferences."

Essentially, you want to know if the CMP is implemented correctly. Just because the cookie banner is there and website visitors can click on it, that alone doesn't mean it's effectively functioning as expected behind the scenes.

To demonstrate how you could validate this, we used ObservePoint to run an Audit of OneTrust.com, our example website for this series, and simulated a user that has opted out of non-strictly necessary cookies. In the resulting report, you can see that there are still 11 tags that are firing, even after opting out to a "Disable All" state. This could be fine. There are some tags (and cookies) that are absolutely necessary for a website to function properly.

If we look more closely at the Audit results, however, we can see that some of these technologies are not categorized as “Strictly Necessary” – tags like Google Ads Remarketing and Google Universal Analytics. While they are not being detected on most pages of the site when a user has opted out, there still are a small handful of pages (46 out of the 1000 scanned) on which user consent preferences do not appear to be fully respected.

If you were to find similar behavior on your own website, you would want to examine those pages to see if your CMP is not implemented as expected or if there are other reasons for that potentially noncompliant state to exist.

If you’d like to see how well your own Consent Management Platform is respecting consumer preferences on your website, reach out to get a pre-recorded demo.

Read the next post in our Website Privacy Validation series: Where are new and/or unapproved cookies and technologies showing up on my website?

How to Interpret an Audit Report

March 19, 2024

In this episode, we go through an Audit report and show you what we look for on each page, where we see most customers have “ah ha!” moments, and answer any questions you might have along the way.

Getting to Know the ObservePoint Audit Report

March 18, 2024

Stuck on the Overview Page? Use this guide to help you dig into the rest of an Audit report!

ObservePoint + NP Digital: How Digital Marketers Should Prepare for 3rd-Party Cookie Deprecation

March 11, 2024

The deprecation of 3rd-party cookies on Chrome is a massive change for digital marketers. This session covers what marketers can expect and how to keep up with these big changes.

Does Your Site Work Without 3rd-Party Cookies?

February 29, 2024

Now that Google Chrome is phasing out 3rd-party cookies, digital marketers and website owners must be adequately prepared for a huge change to the way digital marketing works.

How to Use ObservePoint to Help You Navigate 3rd-Party Cookie Deprecation

February 27, 2024

As you’ve likely heard, major changes are coming to cookies in 2024! Google has started the deprecation of 3rd-party cookies, and ObservePoint can help you easily navigate this changing landscape.

Goodbye 3rd-Party Cookies Pt. 2: Advertiser Perspectives

February 21, 2024

Hear from our special guest Rob Myers, Sr. Product Manager at NextRoll, as he shares how he's preparing their consumer advertising platform to adjust to Chrome's Privacy Sandbox.