Now that GDPR is in affect, what are your thoughts on updating this process to accommodate for the new legislation? If you instance isn't managing European's data, how would you go about ensuring someone who requests to not be tracked or have personally identifiable information on them be collected other than data required to ensure this request is met?(i.e. - keeping an associated ID or email or IP to ensure 3rd party data added later can be screened in the best way possible to prevent any previously removed personal data from re-entering the system) Since stop tracking requests are frequent, it ads a whole layer to this great customization. I suppose it is possible that an additional program could be created to look for identifiers from the "opt-out euro" list in any newly created record regardless of source, then routing the new record to the ban list could make my first questions moot. Still curious if you or anyone has thought about these types of tracking customization and the new law?
... View more