Spain’s Data Protection Authority, AEPD, has updated its Cookie Guidelines to meet the consent guidelines revised by the European Data Protection Board in May. The new requirements must be implemented by Spanish websites this fall. Here’s how to meet the guideline within the deadline.
Here we will explain how the new requirements affect your website and what you can do to meet the standards.
What are the new cookie guidelines in Spain?
A consent in this case, a GDPR valid consent.
The Spanish Guide to cookies also states:
- Cookie walls cannot be used since they do not offer an alternative to consent.
- Scrolling or swiping through a webpage is not considered clear and affirmative consent.
What does that it mean?
As a website owner you are required to collect your visitors' valid consent to cookies. This is carried out by a Cookie Consent Solution.
A cookie wall is a barrier that prevents visitors from entering the site if they do not accept cookies.
Cookie walls are not considered consent. Here the Spanish Data Protection Authority follows in the steps of the EDPB when saying:
"Consent must be freely given. Access to functions on websites must not be made conditional on the consent of the user".
Continued browsing (scrolling or swiping through a website) cannot constitute a valid way for the user to give consent.
Consent must be a clear and affirmative action which requires the user to actually say yes to cookies (opt-in).
What do the spanish cookie guidelines mean for your website?
If you have a cookie banner or consent solution on your website, check whether this meets the standards of the new Spanish guidelines to cookies.
If you don’t know how to check it, get a free compliance check here:
It is not enough simply to show users that you are using cookies on your site.
You also need to collect your users’ valid consent to cookies. And that consent must be stored as documentation to the Spanish Authorities.
How to meet the standards by October 31, 2020?
Maintaining cookie compliance is important, also in Spain.
Cookies collect your users’ personal data, even though they are set by the services you use on your website like Facebook Pixel, Google Analytics, YouTube embedded videos and so on.
As the website owner or operator, you are the data controller and responsible for collecting valid consent to cookies.
Cookie Information can help you with that with a state-of-the-art Cookie Consent banner for your website.
The consent pop-up meets the standards of the Spanish Data Protection Authority, AEPD, and can be adjusted to your needs.
Contact Cookie Information for more information on how to meet the Spanish Cookie Guidelines.
Here’s a short checklist to comply with both national and international rules on cookies and data processing.
CHECKLIST for collecting valid consent to cookies
- Block cookies before you get consent
- Offer an easy way for your user to decline cookies
- Inform your users of cookies
- Respect their privacy choices
- Provide an easy way for change or withdraw consent
- Store their consents for 5 years