The Dutch Data Protection Authority (AP) has investigated 175 websites pertaining to webshops, public administrations, and national media to determine whether they meet the requirements for placing tracking cookies.
Almost 50% of the websites that use tracking cookies do not meet the requirements of the GDPR. Practically all webshops in the investigation do not comply with basic GDPR requirements regarding cookies.
The owners of these websites have received a letter from the AP calling on them to adjust their tracking methods to comply with European law.
Tracking cookies collect and process data about visitors’ internet behavior. With this data, website owners get insights into their visitors’ personal preferences and behavior.
This knowledge can be used to target the visitors with personalized advertisements.
Because of the personal data processing, the website must – according to the GDPR – ask visitors for permission to place tracking cookies on their computers and smart phones.
However, as we have seen in the recent ruling by the European Court of Justice, consent must be informed and actively given – not based on the website’s assumption that the visitor wants cookies.
A checkbox with cookies pre-selected in the cookie banner is not allowed (see ruling).
And consent must be actively given. “If you continue using the website, you agree to cookies” is no longer allowed and is therefore not considered valid consent.
On October 1, 2019, the European Court of Justice ruled that the website must obtain valid consent to set cookies. Silence, inactivity, scrolling down, or pre-selected checkboxes are not considered valid consent.
Are you unsure whether your website or webshop follows the requirements of the GDPR and the recent EU Court ruling on cookies and consent?
Test your website today. It’s easy, it’s free, and we will provide you with a professional and thorough assessment of your GDPR cookie compliance.
With a cookie wall (cookie wall), websites, apps, or other services use the ‘data of access’ method in which users are forced to give consent for using the service.
The AP determines that the websites found in the inquiry using cookie walls also receive a letter stating that cookie walls are not allowed as the consent is not valid regarding the GDPR.
The easiest way is to ask permission to use tracking cookies in the cookie banner. Most visitors accept anyway (our reports say 98,5%).
Here’s a checklist to see whether your cookie consent solution and cookie banner comply with the GDPR.
Learn more about cookies, GDPR, and requirements here: