Iubenda Implementation Guide

Iubenda and Ours Privacy work together to provide a comprehensive consent management solution that supports healthcare, GDPR, CCPA, and other privacy regulations. This guide explains the capabilities, operating modes, and integration patterns available when using Iubenda as your Consent Management Platform (CMP).

Overview

Iubenda controls when the Ours Privacy SDK loads and provides granular consent data that flows through your entire data pipeline. This approach delivers:

• Regulatory Compliance: Full support for GDPR, CCPA, CPRA, LGPD, and healthcare regulations
• Granular Control: Category-based and vendor-specific consent management
• Complete Audit Trail: Visibility into every consent decision and change
• Flexible Integration: Works with any Iubenda configuration or consent strategy

Operating Modes

Ours Privacy supports three distinct operating modes for consent management with Iubenda, each offering different levels of data collection and consent enforcement:

Mode 1: Strict Consent Mode (Zero Data Collection)

Ours Privacy SDK is not loaded until explicit consent is granted through Iubenda, ensuring zero data collection before user permission.

How it works:

• Iubenda controls when the Ours Privacy SDK loads
• No data is sent to Ours Privacy until consent is granted
• Complete control over tracking initiation
• Zero data collection before user permission

Mode 2: Mapper-Controlled Mode (Recommended)

Ours Privacy loads immediately and collects all events, but the mapping layer stops dispatch to destinations based on consent conditions.

How it works:

• Ours Privacy SDK loads immediately and collects all events
• Consent status is passed as event properties
• Ours Privacy mappers conditionally route events to destinations based on consent
• Events without proper consent are filtered out at the mapping layer

Choosing the Right Mode

The choice between these modes depends on your organization's privacy requirements, compliance needs, and technical architecture. We recommend:

• Consult with your privacy officer and/or legal team to determine the appropriate consent management approach for your use case
• Reach out to us to start a conversation about privacy and consent management strategies

Our team can help you evaluate your specific requirements and recommend the best approach for your organization.

Implementing Consent Events and Mapping

We recommend firing a "consent_change" event when consent is granted or changed. This allows you to track consent decisions and use them in your mapping logic.

Firing Consent Events

Use Iubenda's web SDK to get the consent status or grab their cookie string if it contains the allowed/denied categories. Then pass this information into event properties and visitor properties:

// Get consent status from Iubenda
const consentStatus = {
  marketing: true,
  analytics: false,
  functional: false,
  necessary: true,
}; // Example object grab the real one with the Iubenda web sdk.

// Track consent change event
ours(
  "track",
  "consent_change",
  {
    // Event properties
    ...consentStatus,
    cmp_vendor: "iubenda",
  },
  {
    // Visitor properties - consent object
    consent: consentStatus,
  }
);

Conclusion

Integrating Iubenda with Ours Privacy enables:

• Full Regulatory Compliance: Support for GDPR, CCPA, CPRA, and healthcare regulations
• Granular Consent Control: Category-based and vendor-specific consent management
• Complete Audit Trail: Visibility into every consent decision and change
• Flexible Integration: Works with any Iubenda configuration or consent strategy

The Ours Privacy platform respects these consent properties throughout your data pipeline, ensuring compliance while maintaining data integrity and user privacy.

For additional support or questions about Iubenda integration, contact our support team at support@oursprivacy.com.