GDPR - End user flow

User persona: End User

The GDPR consent form flow for an end user typically begins with the user being informed about the data collection purposes, their rights, and how the data will be used. The user is then presented with clear and specific consent options, allowing them to agree or decline data processing activities.

They must explicitly opt-in to grant consent. Once consent is given, it is securely recorded and stored for compliance purposes, ensuring transparency and adherence to GDPR regulations.

Prerequisite:

GDPR must be enabled for the end user for the location to which the user belongs.

Accept GDPR Consent

Following are the steps for an end user who accepts GDPR consent form:

1. Log in to Apex.

2. GDPR Consent Form is displayed. Refer the following figure:

   

   Figure: GDPR Consent Form

3. Scroll down the form, and click the check box next to I have read the above information and accept. Accept option is enabled only after you click on the check box. Refer the following figure:

   Figure: Accept/Decline option enabled

4. As you click Yes, another confirmation message is displayed stating that you have provided the consent to see and store your Personal Identifiable Information (PII) data in encrypted form. Also, the message includes details about who will view your PII data. Refer the following figure:

   

   Figure: Confirmation - Accept GDPR consent form

   Click Ok to accept and confirm that you are providing consent. Click Cancel to go back to the previous screen.

Decline GDPR Consent

Following are the steps for an end user who declines GDPR consent form:

1. Log in to Apex.

2. GDPR Consent Form is displayed. Refer the following figure:

   

   Figure: GDPR Consent Form

3. Click Decline. A confirmation message is displayed that mentions the users’ data will not be stored in Apex and they will be logged out of Apex. Refer the following figure:

   

   Figure: Decline - confirmation

4. Click Ok to proceed without accepting the GDPR consent form.

Accept after Declining GDPR Consent

After declining the GDPR consent form, you will not be able to use Apex. Next time you log in to Apex, you will again see the GDPR consent form. You can accept the consent after declining it before.

Following are the steps that explain how the GDPR consent form works after you decline it and again log in to Apex:

1. Log in to Apex.

2. Once you log in to Apex after declining the GDPR consent form before, then a popup is displayed that mentions that you have previously declined GDPR consent and asks you to provide your consent. Refer the following figure:

   Figure: GDPR consent form popup

3. Click Ok. The GDPR consent form is displayed. Scroll down the form, and click the check box next to I have read the above information and accept. Refer the following figure:

   Figure: Yes/Decline option enabled

4. Click Yes.

5. As you click Yes, another confirmation message is displayed stating that you have provided the consent to see and store your PII data in encrypted form. Also, the message includes details about who will view your PII data. Refer the following figure:

   Figure: Confirmation - Accept GDPR consent form

   Click Ok to accept and confirm that you are providing consent. Click Cancel to go back to the previous popup.

Note:

End users receive email notifications when they accept or decline the GDPR consent.