Data privacy (GDPR & CCPA)
Data privacy is a huge consideration for anyone considering creating a quiz for marketing and lead generation. Quizzes are unrivalled as interactive marketing tools – precisely because each user can give personally identifiable information (PII) in the quiz and the qui lead form.
The 2018 Cambridge Analytica/Facebook scandal showed just how unscrupulous companies can use quizzes to compromise data privacy.
Governments have been introducing wide-ranging privacy regulation around the world – like the EU’s GDPR and California’s CCPA. Controls have been tightened – and big fines imposed (up to 50 million euros for Google).
Riddle’s approach to data privacy
We’ve designed Riddle to be a completely transparent quiz maker – that complies fully with the GDPR as well as the CCPA.
You can read more in the links above – but essentially, we’ve set up our quiz creator around two key data privacy principles:
Your quiz = 100% your data
We don’t ever, ever collect and sell your users’ quiz data. We don’t sell ads and our sole goal is to be the best quiz maker on the planet.
Many other quiz makers will add trackers and dodgy cookies to their embed quiz codes – so they can gather data around your audience taking your quiz.
We don’t. Period.
The only cookie we use is a completely anonymous one – it’s a session cookie (just a bunch of numbers) that we use for Riddle functionality such as ensuring people don’t vote more than one in a poll. No personal data – not even IP addresses – are ever collected.
Other quiz makers do not follow this data privacy approach – we read over on Quiz-Maker-Review.com that Typeform includes 11 trackers and 72 cookies.
Ouch.
Sending your lead generation data
The other key component for data privacy has to do with collecting quiz leads.
We spent much of 2018 preparing for the GDPR.
Our main focus? Configuring our architecture so that all your quiz leads and their quiz responses will go directly to your marketing software like Hubspot or Salesforce.
For most users, all that personally identifiable information (PII) won’t ever touch Riddle’s servers.
Your data privacy and security folks will appreciate this approach – it’s one less area where your audience’s PII can be accessed.
Saving leads and PII to Riddle
Now for some folks, they might not use marketing software – and are happy with just downloading a spreadsheet of all their quiz leads.
For these users, we do offer a ‘Save to Riddle’ option – which will securely store quiz leads and data to our servers.
However, we include by default a data privacy message on each lead form – informing your audience that their PII will be on our servers (a key GDPR requirement).
And we encrypt and hash the data – so no Riddle employee can access or view it.
Again, your quiz = your data.
Other data privacy and GDPR measures
We could go on and on about all the other steps we’ve taken.
- All our servers are in the EU – Germany and Luxembourg. We don’t use cloud servers like AWS or Google.
- No SaaS or cloud-based software sending data to the USA (that would violates the GDPR)
- Data processing agreement – signed off and used by the BBC and our other global partners
Any questions about quiz data privacy?
We’re big quiz (and privacy) geeks here at Riddle.
Please just ask us on support chat or at hello@www.riddle.com/blog – we’re always happy (and super-fast) to help.