Let's talk 
3D Visualisation  
B2B Marketing 
Interactive 3D Models 
+44(0)1625 265932

Why you should work with a GDPR Compliant 3D Design Company

Thunderstorm FX logo.

There are many factors to consider when it comes to choosing the best 3D design company to work with and for many, data management policies won’t be one of them. And, that’s understandable. It’s not exactly exciting to talk about and doesn’t relate to the actual quality of work being produced either. However, this is definitely a factor that should at the very least be on the radar and form part of the decision making process.

Here’s why

You can tell a lot about a business just by looking at how they’ve responded to something as serious as GDPR, especially since it’s now been more than 2 years since it came into effect. By this point, every business should be aware of this and at the very least, should have made some effort to implement the required changes to the best of their ability. After all, it’s the law. Small businesses that might be run by just a single person could potentially be excused for having a less than perfect implementation of GDPR procedures to some extent, but they aren’t the worst offenders. In many cases, it appears to be the large 3D design businesses with the biggest clients that are. Businesses that have lots of staff, plenty of financial resources and should know better.

Nobody likes the idea of having to prevent vital creative content from loading when a potential new client arrives on their website. It just spoils the initial experience and design of the page. But, this is necessary when using embedding YouTube videos or content that uses Google Analytics tracking code. Take a look at our 3D interactive services page as an example. We would prefer to be able to load the interactive content and make it available as soon as you arrived on the page, but we can’t because Sketchfab content currently uses Google Analytics in the embed code. This is something they are currently working on resolving, but for the time being this is the only solution.

Therefore, I think it’s reasonable to say that it reflects badly on the overall culture of any 3D design business that might have made a conscious effort to ignore GDPR completely. And here’s the bigger issue. If a business doesn’t take the privacy of both your company and staff seriously, what does that say about them? Blocking cookies is only one part of GDPR, so might this highlight bigger internal issues that aren’t as apparent? Do you really want to support any business that believes they are above the law and doesn’t care about your data?

Here’s a brief and non-exhaustive checklist to help you identify if a business is GDPR compliant when visiting their website.

  • Are YouTube videos embedded and loaded?
  • Are Vimeo videos being embedded and loaded? Please see supplementary information at the bottom of this article.
  • Is there a live chat service?
  • Is content from Facebook, Instagram or Twitter embedded and loaded by default?
  • Is there a message (usually in the footer) that says something along the lines of “by continuing to use this website you are accepting the use of cookies?” 
  • Is the website using Google Analytics – You can usually tell by looking in the bottom left corner of the browser window as you move from page to page. 

If the answer to any of the above questions is YES, did you receive any form of notification to inform you that marketing / tracking cookies might be in use on the website? Were you given the option to decline and / or manage your cookie preferences before this content was loaded?

If the answer to that question is NO, then it’s very likely that the 3D design business in question is not GDPR compliant and doesn’t take your privacy seriously. This is because the content listed above will frequently make use of marketing cookies / Google Analytics which requires express consent from the user before it is allowed to function. Marketing cookies can be used to track your IP address and browsing habits across multiple different websites, which makes them quite serious. You can read more about them here: https://www.cookiebot.com/en/tracking-cookies.

In summary, choosing a GDPR compliant 3D design company is important for many different reason. It not only demonstrates that the business is proactive and compliant. It also proves they care about how they handle your data and do things the right way too. Thunderstorm FX® is one of those companies and we would like the opportunity to work with you.


Some businesses display a message that tells you that by continuing to use their website you are in some way accepting the use of cookies. This is not GDPR compliant for a number of reasons. 1. Cookies were most likely set on your computer from the very moment you arrived on the website. 2. You were not given the option to decline cookies at any point. 3. If marketing cookies (Google Analytics) are in use on this website they will still remain on your computer even if you click the back button or navigate away from the website. 4. You are not given any information about the type of cookies being used on the website, and what they are being used for.


If you are preventing third-party cookies from being set in your browser or use a pop up blocker tool, then it might not be possible to see some cookie management dialogue boxes. You will need to enable the use of third-party cookies and refresh the page and / or clear your cache to resolve this.


A popular misconception is that embedding YouTube videos via the cookieless domain method prevents cookies from being used and avoids the need to obtain user consent. This is incorrect.
This method only prevents cookies from being set until the video is played. This means that you still need to obtain consent from the user before the video can be played if you want to be compliant.


Unlike YouTube, Vimeo “have” made it possible to prevent Google Analytics code from functioning in their videos. However, this is not the default behaviour and the solution involves adding an additional variable to the end of the URL in the embed code. This is the method we have used here on our website and how we are able to load our Vimeo videos by default.

Thunderstorm FX®

Agency Capability, Freelance Flexibility