We are getting ready for the EU GDPR (http://www.eugdpr.org/) for 2018. We are going through the compliance and need to do a Double Opt-In for “Right to Access” in the regulation.
Here is the current way we are gathering data:
We have an AEM Forms Page (each country has its own AEM Page) that is collecting the information (i.e. email address) and sends the information into ACS via the API integration. The data (i.e. email address) is then placed in an ACS Service along with showing in ACS Profiles (e.g. email address, and GEO/ORG based on the AEM page you enter info).
User Flow that I am trying to accomplish:
Germany User goes to AEM Page and signs up
ACS received Data and sends out an acknowledgement email for confirmation.
After acceptance of Email confirmation, the data is stored in ACS. If User doesn’t accept in 48
hours the data is removed from ACS.
What is best method to accomplish the Double Opt-in? Through ACS Message Center or JS or Workflow
Please let me know your thoughts on this?