Privacy Manager (Right to be Forgotten)

Need to stay compliant with the most stringent global data regulations? The Privacy Manager provides built in compliance and total peace of mind for your business. In an era of aggressive data enforcement, giving your visitors absolute control over their personal information is not just a legal requirement but a massive trust builder for your brand.

The Power of Pseudo Deidentification

The Privacy Manager features a highly unique and powerful pseudo deidentification engine. Unlike primitive systems that simply delete a row in a database, our process allows a visitor to proactively anonymize their data through a secure, verified workflow.

This matters because leading regulations grant individuals the Right to be Forgotten. By providing a clear, self serve path for deidentification, you satisfy these strict legal requirements without manual intervention from your legal team. Once a user triggers this process, the system instantly strips away their personally identifiable information, including:

  • Deep Profile Enrichment: All professional background data, company history, and LinkedIn summaries are permanently erased.
  • Identity Data: Their first name, last name, and any other direct identifiers are scrubbed from the record.
  • Contact Information: Their validated email address is removed, ensuring no further outreach can occur.

Protecting Your Analytics and Historical Data

What makes this feature truly unique is how it handles the remaining data. While we erase every trace of who the person is, we maintain the historical data of their visits and their complete user journey in an anonymized state.

By preserving these behavioral patterns without the personal identifiers, your aggregate statistics remain perfectly accurate. You still see the page views, the conversion events, and the overall traffic flow that drove your success, but the specific person behind those actions is now a ghost in the system. This ensures your reporting never skews and your historical trends remain intact, even as you maintain 100% compliance with global privacy standards.


Why the Privacy Manager is Essential for Modern Compliance

  • GDPR Compliance: Fully satisfy the General Data Protection Regulation requirements for data portability and the right to erasure across the entire European Union.
  • DMA Alignment: Stay ahead of the Digital Markets Act by ensuring your data collection and user consent practices meet the new transparency standards for gatekeeper platforms.
  • ePrivacy Directive Support: Ensure your website follows the specific cookie and tracking consent rules of the ePrivacy Directive, providing a clear path for users to withdraw their consent at any time.
  • Proactive Trust Building: Let your visitors know from the very first interaction that they have the power to anonymize their data at any time.
  • Secure Verified Opt Out: An emailed security PIN ensures that only the actual owner of the data can trigger the deidentification process, preventing accidental or malicious data loss.
  • System Wide Synchronization: A robust API is available to ensure that when a user anonymizes their data in Bread and Butter, that change can be instantly synced across all your other connected data systems and CRMs.

Customizing Your Privacy Manager

The Privacy Manager provides a robust, four part workflow to ensure your users can easily request deidentification while your business remains fully compliant with global privacy standards. Bread and Butter handles the complex verification and anonymization logic, leaving you in total control of the final approval.

Here is how the deidentification process works and how to set it up:


Step 1: The Trigger You can initiate the deidentification process on your website using one of two simple methods. Choose the one that best fits your site design:

  • Via JavaScript: You can call the deidentification widget directly by adding a simple line of code to any button or link: BreadButter.widgets.deIdentification();
  • Via URL Parameter: You can add a button anywhere on your website that links to your homepage (or any page running our library) with a specific parameter added to the end of the URL: ?action=deidentification

Step 2: The Request Once a user clicks your trigger, they are presented with the secure Privacy Manager widget. To protect against unauthorized requests, the system asks them to prove their identity by authenticating or confirming their request via a secure PIN sent to their verified email address. After they successfully authenticate, their status is moved to pending deidentification.

Step 3: The Approval Security and data integrity are paramount. When a user is pending deidentification, you as the application owner will receive an immediate notification within your Bread and Butter Opportunities view. You can review the request and approve the anonymization directly within that notification.

Step 4: The Deidentification Once you provide the final approval, the user is instantly deidentified and pseudonymized within the Bread and Butter ecosystem. At this stage, our system scrubs all identifiable profile data while preserving the anonymized journey history for your analytics.


Note on System Synchronization: While Bread and Butter automatically handles the anonymization within our platform, it is your responsibility to ensure this user’s information is also removed from any of your other internal systems or third party databases. We recommend using our API to automate this synchronization across your entire tech stack.

Did this answer your question? Thanks for the feedback There was a problem submitting your feedback. Please try again later.