GuidesAPI ReferenceSign-UpRecipes
Guides

Double Opt-In

Suggest Edits

Double opt-in is a key process that enhances the integrity of consent collection by requiring users to confirm their consent via a follow-up action, typically through an email. This approach is mandated in some jurisdictions and can also be employed voluntarily to build trust with your customers.

Why Use Double Opt-In?

  • Legislative Requirements: In certain jurisdictions, such as Germany and Switzerland, double opt-in is a legal requirement.

  • Building Trust: Even in regions where double opt-in is not legally required, implementing it can help to build trust with your customers. It demonstrates a commitment to transparency and respect for their data, ensuring that their consent is only processed when they have explicitly confirmed it.

How Double Opt-In Works in DataGuard CPM

DataGuard CPM supports the double opt-in process, ensuring compliance and enhancing trust:

  • Pending State: When double opt-in is enabled, any Consent Purpose associated with a Citizen will enter a "pending" state upon initial consent. This means that the Citizen's data cannot be processed until they confirm their opt-in via email. Once the user confirms, the Consent Purpose transitions from "pending" to "granted," allowing data processing to proceed.

  • Enabling Double Opt-In: To enable double opt-in within a widget, set the submitAsPending boolean flag in the widget configuration to true. This configuration ensures that all consents collected through the widget will require confirmation before becoming active.

Managing Double Opt-In Emails

Option 1: DataGuard CPM Sends Emails

If you choose to store the Citizen's email addresses within the CPM platform, DataGuard can handle the sending of double opt-in emails on your behalf. This automates the process, ensuring that confirmation requests are sent out promptly and efficiently.

Option 2: Sending Emails Yourself

If you prefer not to store Citizen email addresses in CPM, you can manage the double opt-in email process yourself. DataGuard CPM provides a simple mechanism for this via the "consent receipts" webhook. This webhook sends you all the necessary information to populate and send the double opt-in email from your own system. For more details, see the Webhooks page.

Conclusion

Double opt-in is a robust method to ensure that consent is both explicit and verifiable, meeting legal requirements where applicable and fostering greater trust with your users. Whether you choose to manage the process directly or allow DataGuard CPM to handle it, the platform provides flexible options to suit your organisation's needs.

Updated about 2 months ago