Holly Drake

Holly Drake

Chief Privacy Officer
Office of the Chief Information Officer

Privacy management with OneTrust

Holly Drake

Mar 12, 2021

Privacy is top of mind for many users of technology. In 2020, Netflix released The Social Dilemma, which made people think about privacy online. This documentary enlists citizens of the big tech companies who reveal perhaps more than we want to know about big tech and social media collection practices. Ohio State has been thinking about privacy for our network of sites and is adding cookie privacy consent banners.

Breaking: As Apple prepares to release iOS 14.5, it’s even more important to offer consent on the pages where paid media drive traffic to our sites. Let us know if you have questions about how these releases affect your sites’ paid media strategy. Reach out to marketingenablement@osu.edu for more information.


Here at Ohio State, we have multitudes of websites. Some are informational, and others are functional. Functional websites provide a necessary way to do business. You pay tuition. You schedule conference rooms. There’s a balance to the information you provide and the convenience of services online. But we know that users value their privacy no matter how they intend to use a site. Ohio State is committed to protecting users visiting our sites. Implementing a cookie pop message isn't just a compliance requirement; it also makes for a good user experience.


Cookies are bits of information that can be left on your devices as a way of saying “yep, I’ve been here.” These little bits retain and convey information such as the time you last visited, what pages you browsed and your device type. Many sites, especially in marketing, rely on these to get not only data, but to make it easier to serve you relevant information. But we want visitors to have a say in what’s collected.

Here in the United States, you probably have seen the banners on sites you visit: “By using this site, you agree…” language. These sites are managing your expectation of privacy by including it within their terms of site use.

Ohio State will deploy a solution that goes beyond the usage clause. We want to be sure users can identify what is collected through a privacy management solution. That way, users understand what our sites collect and they can opt out of certain tracking options.


While regulations and requirements sparked by the Apple iOS release change rapidly, but we are committed to privacy protections for all of our site visitors.

Visitors from the European Union are protected with the General Data Protection Act (GDPR) and for visitors originating from the United States (and all other locations), we are using the principles in the California Consumer Privacy Act (CCPA). The solution we will deploy on our sites supports privacy in a variety of factors.

A cookie statement and pop-up is one way to alert visitors to our sites about what we collect, why we collect it and what their options will be. The website privacy solution from OneTrust allows us to offer a simple interface, across various sites at Ohio State. We know visitors hope from one to site to the next, but all the while, they see us as one entity, with one eye on their privacy. We want to offer one banner acceptance and make sure that all of our sites offer a consistent way visitors can understand collection practices, site by site.

OneTrust privacy management software will allow site developers to classify the types of cookies used, site by site, so our visitors can always review cookies and collection practices.

Ohio State will respect user privacy by turning on OneTrust, site by site, cookie by cookie, in the next few months. Privacy management practices make good business and organizational practice.


You can get your websites ready for OneTrust by working with Marketing Enablement partners. Review the solution information at https://universitymarketing.osu.edu/resources/marketing-enablement-resources/tools-support/onetrust.html and schedule for implementation when you are ready. We know there are lots of questions about types of websites that require compliance, so if you need some help getting started, email for assistance at marketingenablement@osu.edu


About the author