This document provides an overview of cookie consent and compliance with cookie laws around the world. It discusses what cookie consent is, the different types of cookies and technologies that collect data, how to implement cookie consent on a website, dos and don'ts of cookie banners, penalties for non-compliance, and how a consent management platform can help businesses easily achieve compliance.
Cookie consent is a legal requirement that mandates websites to obtain visitors’ consent before placing cookies on their devices. Consent is obtained via a cookie banner that enables visitors to accept or decline cookies on the website.
Your website must provide users based in Europe with the ability to manage the activation of cookies and trackers that collect personal data. To comply with the strict cookie laws, it is very important for businesses to get it right as cookies are subject to robust data rules.
In this blog post, we’ll cover the most critical points to understand regarding the EU’s GDPR, cookies, and data privacy compliance on your website and how Seers’ consent management platform (CMP) takes care of them all.
Cookie Consent and Authorized Data Collection_Mar23.pdfAdzappier
Customer data needs safe handling, and unbridled use of various data tracking technologies can hinder data security. Therefore, business owners and marketers should emphasize identifying the potential harm of using data collection technologies.
Cookies have long been known to bring setbacks to global corporations. However, other technologies can also set a business on fire if not used responsibly.
This handbook will focus on the cookie consent requirements for businesses that deal with the European Union and U.S. customers.
Part 1: Understanding Data trackers, Consumer Data Privacy Rights, and the need for prioritizing privacy management processes within an organization.
An Overview of Web Cookies
Cookies are small pieces of text that websites place on user devices (smartphones, tablets, PCs.) Websites use cookies for a variety of reasons. While some cookies are ‘essential’ for a site’s functioning, others are placed on user devices for fulfilling specific purposes.
The essential cookies allow the proper functioning of a website’s features (such as identifying a registered user or locking users’ language preferences.) These cookies also let playing embedded videos without affecting website speeds.
On the other hand, a website can work fine without the ‘non-essential’ cookies. Websites use these cookies to gather specific information about visitors. The data collected by these cookies contain, but is not limited to:
Use activity on various pages
Individual’s web browsing history
Users IP address
Social Security Number
Payment Details
Types of cookies
Internet cookies are classified into two categories:
Based on lifespan
There are two types of cookies based on their active duration on a user device (smartphone, PC, tablet.):
Session Cookies: These cookies remain active on a browser until the user exits a website. The expiry time of session cookies varies for the ‘session duration’, the amount of time a user spends on a website.
Persistent Cookies: These are cookies used to perform deliberate data collection even after visitors exit a website. Also known as ‘tracking’ or ‘stored’ cookies, these do not get deleted when visitors leave a website. Instead, persistent cookies can stay active on user devices for up to 2 years.
There’s another type of persistent cookie called a Super Cookie. The website visitor cannot detect it as it does not land in the location where other browser cookies are stored on user devices. This type of web cookie is also notoriously hard to remove as it rebuilds upon deletion.
Based on the source of origin
Web cookies can originate from two kinds of sources:
https://adzapier.com/cookie-consent-management
eBusiness Club "Demystifying the EU Cookie Law presentation, GeldardsJon Egley
The eBusiness Club eBiz byte seminar delivered by Julian Turner, Senior Associate Solicitor with one of the country’s leading regional law firms Geldards demystifying both the legal issues whilst offering practical advice on how to implement effective solutions.
Cookie Consent Regulatory Updates: How to Maintain ComplianceTrustArc
Staying up to date with the latest global cookie policy requirements can be difficult. Following the GDPR, there have been many recent rulings, legal commentary, and industry framework updates that have modified requirements – requiring organizations to stay hyper-vigilant in order to maintain cookie compliance.
As the upcoming Irish Data Protection Commission (the "DPC") October 2020 enforcement date approaches, organizations are scrambling to understand the consent mechanism updates and how to be able to stay agile enough to quickly implement future regulatory changes.
Join us as we walk through recent cookie policy updates and provide guidance on how to utilize TrustArc Cookie Consent Manager to help you meet the new regulatory requirements.
This webinar will review:
-Recent rulings and legal commentary (CJEU ruling, German Court, EDPB, Belgian DPA, Ireland DPA, and CNIL)
-Industry framework updates (IAB EU and CCPA)
-Upcoming regulatory requirements (CCPA, ePrivacy regulation)
Greenlight digital marketing - when the digital cookie crumblesGreenlight Digital
Browser ‘cookies’ are the life blood of online marketing. They tells us where our site traffic comes from, in what quantities and what it does when it gets there. But the humble Cookie is under threat from many angles. Come May 26 2012, European privacy laws come into force. All UK websites must offer users opt-in consent tools to allow cookies to pass information about browsing activities to 3rd parties. So here’s our brief and easy to read slide pack giving you an overview and highlighting options.
Cookie consent is a legal requirement that mandates websites to obtain visitors’ consent before placing cookies on their devices. Consent is obtained via a cookie banner that enables visitors to accept or decline cookies on the website.
Your website must provide users based in Europe with the ability to manage the activation of cookies and trackers that collect personal data. To comply with the strict cookie laws, it is very important for businesses to get it right as cookies are subject to robust data rules.
In this blog post, we’ll cover the most critical points to understand regarding the EU’s GDPR, cookies, and data privacy compliance on your website and how Seers’ consent management platform (CMP) takes care of them all.
Cookie Consent and Authorized Data Collection_Mar23.pdfAdzappier
Customer data needs safe handling, and unbridled use of various data tracking technologies can hinder data security. Therefore, business owners and marketers should emphasize identifying the potential harm of using data collection technologies.
Cookies have long been known to bring setbacks to global corporations. However, other technologies can also set a business on fire if not used responsibly.
This handbook will focus on the cookie consent requirements for businesses that deal with the European Union and U.S. customers.
Part 1: Understanding Data trackers, Consumer Data Privacy Rights, and the need for prioritizing privacy management processes within an organization.
An Overview of Web Cookies
Cookies are small pieces of text that websites place on user devices (smartphones, tablets, PCs.) Websites use cookies for a variety of reasons. While some cookies are ‘essential’ for a site’s functioning, others are placed on user devices for fulfilling specific purposes.
The essential cookies allow the proper functioning of a website’s features (such as identifying a registered user or locking users’ language preferences.) These cookies also let playing embedded videos without affecting website speeds.
On the other hand, a website can work fine without the ‘non-essential’ cookies. Websites use these cookies to gather specific information about visitors. The data collected by these cookies contain, but is not limited to:
Use activity on various pages
Individual’s web browsing history
Users IP address
Social Security Number
Payment Details
Types of cookies
Internet cookies are classified into two categories:
Based on lifespan
There are two types of cookies based on their active duration on a user device (smartphone, PC, tablet.):
Session Cookies: These cookies remain active on a browser until the user exits a website. The expiry time of session cookies varies for the ‘session duration’, the amount of time a user spends on a website.
Persistent Cookies: These are cookies used to perform deliberate data collection even after visitors exit a website. Also known as ‘tracking’ or ‘stored’ cookies, these do not get deleted when visitors leave a website. Instead, persistent cookies can stay active on user devices for up to 2 years.
There’s another type of persistent cookie called a Super Cookie. The website visitor cannot detect it as it does not land in the location where other browser cookies are stored on user devices. This type of web cookie is also notoriously hard to remove as it rebuilds upon deletion.
Based on the source of origin
Web cookies can originate from two kinds of sources:
https://adzapier.com/cookie-consent-management
eBusiness Club "Demystifying the EU Cookie Law presentation, GeldardsJon Egley
The eBusiness Club eBiz byte seminar delivered by Julian Turner, Senior Associate Solicitor with one of the country’s leading regional law firms Geldards demystifying both the legal issues whilst offering practical advice on how to implement effective solutions.
Cookie Consent Regulatory Updates: How to Maintain ComplianceTrustArc
Staying up to date with the latest global cookie policy requirements can be difficult. Following the GDPR, there have been many recent rulings, legal commentary, and industry framework updates that have modified requirements – requiring organizations to stay hyper-vigilant in order to maintain cookie compliance.
As the upcoming Irish Data Protection Commission (the "DPC") October 2020 enforcement date approaches, organizations are scrambling to understand the consent mechanism updates and how to be able to stay agile enough to quickly implement future regulatory changes.
Join us as we walk through recent cookie policy updates and provide guidance on how to utilize TrustArc Cookie Consent Manager to help you meet the new regulatory requirements.
This webinar will review:
-Recent rulings and legal commentary (CJEU ruling, German Court, EDPB, Belgian DPA, Ireland DPA, and CNIL)
-Industry framework updates (IAB EU and CCPA)
-Upcoming regulatory requirements (CCPA, ePrivacy regulation)
Greenlight digital marketing - when the digital cookie crumblesGreenlight Digital
Browser ‘cookies’ are the life blood of online marketing. They tells us where our site traffic comes from, in what quantities and what it does when it gets there. But the humble Cookie is under threat from many angles. Come May 26 2012, European privacy laws come into force. All UK websites must offer users opt-in consent tools to allow cookies to pass information about browsing activities to 3rd parties. So here’s our brief and easy to read slide pack giving you an overview and highlighting options.
Aims at Online privacy, and I deliberately choose this content for u because it seems to be the most famous one and people maybe benefit from this part when they are facing the online privacy issues. Hope u guys can enjoy it.
Data Restart 2022: Marina Mchedlishvili - How to build strong data strategies...Taste
Google may have postponed the end of third-party cookies to 2024, but the effects on data collection and data management are already visible. The restrictions on legal frameworks and browsers are increasing every day. Businesses and marketers are struggling to improve campaign performance, face data losses and lack visibility on the purchase journey to drive business opportunities. In the post-cookie world, there is one thing that is certain: consent is here to stay. In the future, there will only be data with consent, or no data at all. Join us for this session, where we will talk about how to improve your data strategy by leveraging consent in a post-cookie era.
TrustArc Webinar-Advertising, Privacy, and Data Management Working TogetherTrustArc
Today, more and more companies use advertising technologies (AdTech) to reach their consumers and better understand their preferences. This can lead to multiple data protection risks. Data privacy awareness is increasing due to seismic developments in the industry brought about by key players such as Google and Apple. In parallel, global regulations set stricter guidelines around the collection, storage, and use of personal data.
This is not over. With the decisions coming out soon on analytics, how will the advertising technologies landscape adjust? Ultimately, how can advertising, privacy, and data management work together?
Our panel in this webinar explored the practical steps your organization should take to ensure that its digital advertising practices are compliant with data protection laws.
This webinar reviews:
- The current practices and developments in the AdTech industry
- The laws and regulations governing AdTech
- How to address the privacy issues related to advertising technology
The cookiepocalypse is coming and third-party cookies' reign over the web will come to a close. Are you ready for a cookieless future? This presentation from Media Kitchen explores why cookies are crumbling, the resulting impact across the ecosystem, and early steps advertisers can take to prepare.
EU laws, including GDPR, require affirmative informed consent from users when processing data including certain web cookies. This example policy clearly informs users about cookies generally, how they are sued by the company, applicable laws, how to block cookies, and explicitly lists cookies used by the organization and its policies in that regard.
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf91mobiles
91mobiles recently conducted a Smart TV Buyer Insights Survey in which we asked over 3,000 respondents about the TV they own, aspects they look at on a new TV, and their TV buying preferences.
Essentials of Automations: Optimizing FME Workflows with ParametersSafe Software
Are you looking to streamline your workflows and boost your projects’ efficiency? Do you find yourself searching for ways to add flexibility and control over your FME workflows? If so, you’re in the right place.
Join us for an insightful dive into the world of FME parameters, a critical element in optimizing workflow efficiency. This webinar marks the beginning of our three-part “Essentials of Automation” series. This first webinar is designed to equip you with the knowledge and skills to utilize parameters effectively: enhancing the flexibility, maintainability, and user control of your FME projects.
Here’s what you’ll gain:
- Essentials of FME Parameters: Understand the pivotal role of parameters, including Reader/Writer, Transformer, User, and FME Flow categories. Discover how they are the key to unlocking automation and optimization within your workflows.
- Practical Applications in FME Form: Delve into key user parameter types including choice, connections, and file URLs. Allow users to control how a workflow runs, making your workflows more reusable. Learn to import values and deliver the best user experience for your workflows while enhancing accuracy.
- Optimization Strategies in FME Flow: Explore the creation and strategic deployment of parameters in FME Flow, including the use of deployment and geometry parameters, to maximize workflow efficiency.
- Pro Tips for Success: Gain insights on parameterizing connections and leveraging new features like Conditional Visibility for clarity and simplicity.
We’ll wrap up with a glimpse into future webinars, followed by a Q&A session to address your specific questions surrounding this topic.
Don’t miss this opportunity to elevate your FME expertise and drive your projects to new heights of efficiency.
More Related Content
Similar to A-Z Guide to Cookie Consent and Cookie Laws Around the World.pdf
Aims at Online privacy, and I deliberately choose this content for u because it seems to be the most famous one and people maybe benefit from this part when they are facing the online privacy issues. Hope u guys can enjoy it.
Data Restart 2022: Marina Mchedlishvili - How to build strong data strategies...Taste
Google may have postponed the end of third-party cookies to 2024, but the effects on data collection and data management are already visible. The restrictions on legal frameworks and browsers are increasing every day. Businesses and marketers are struggling to improve campaign performance, face data losses and lack visibility on the purchase journey to drive business opportunities. In the post-cookie world, there is one thing that is certain: consent is here to stay. In the future, there will only be data with consent, or no data at all. Join us for this session, where we will talk about how to improve your data strategy by leveraging consent in a post-cookie era.
TrustArc Webinar-Advertising, Privacy, and Data Management Working TogetherTrustArc
Today, more and more companies use advertising technologies (AdTech) to reach their consumers and better understand their preferences. This can lead to multiple data protection risks. Data privacy awareness is increasing due to seismic developments in the industry brought about by key players such as Google and Apple. In parallel, global regulations set stricter guidelines around the collection, storage, and use of personal data.
This is not over. With the decisions coming out soon on analytics, how will the advertising technologies landscape adjust? Ultimately, how can advertising, privacy, and data management work together?
Our panel in this webinar explored the practical steps your organization should take to ensure that its digital advertising practices are compliant with data protection laws.
This webinar reviews:
- The current practices and developments in the AdTech industry
- The laws and regulations governing AdTech
- How to address the privacy issues related to advertising technology
The cookiepocalypse is coming and third-party cookies' reign over the web will come to a close. Are you ready for a cookieless future? This presentation from Media Kitchen explores why cookies are crumbling, the resulting impact across the ecosystem, and early steps advertisers can take to prepare.
EU laws, including GDPR, require affirmative informed consent from users when processing data including certain web cookies. This example policy clearly informs users about cookies generally, how they are sued by the company, applicable laws, how to block cookies, and explicitly lists cookies used by the organization and its policies in that regard.
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf91mobiles
91mobiles recently conducted a Smart TV Buyer Insights Survey in which we asked over 3,000 respondents about the TV they own, aspects they look at on a new TV, and their TV buying preferences.
Essentials of Automations: Optimizing FME Workflows with ParametersSafe Software
Are you looking to streamline your workflows and boost your projects’ efficiency? Do you find yourself searching for ways to add flexibility and control over your FME workflows? If so, you’re in the right place.
Join us for an insightful dive into the world of FME parameters, a critical element in optimizing workflow efficiency. This webinar marks the beginning of our three-part “Essentials of Automation” series. This first webinar is designed to equip you with the knowledge and skills to utilize parameters effectively: enhancing the flexibility, maintainability, and user control of your FME projects.
Here’s what you’ll gain:
- Essentials of FME Parameters: Understand the pivotal role of parameters, including Reader/Writer, Transformer, User, and FME Flow categories. Discover how they are the key to unlocking automation and optimization within your workflows.
- Practical Applications in FME Form: Delve into key user parameter types including choice, connections, and file URLs. Allow users to control how a workflow runs, making your workflows more reusable. Learn to import values and deliver the best user experience for your workflows while enhancing accuracy.
- Optimization Strategies in FME Flow: Explore the creation and strategic deployment of parameters in FME Flow, including the use of deployment and geometry parameters, to maximize workflow efficiency.
- Pro Tips for Success: Gain insights on parameterizing connections and leveraging new features like Conditional Visibility for clarity and simplicity.
We’ll wrap up with a glimpse into future webinars, followed by a Q&A session to address your specific questions surrounding this topic.
Don’t miss this opportunity to elevate your FME expertise and drive your projects to new heights of efficiency.
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered QualityInflectra
In this insightful webinar, Inflectra explores how artificial intelligence (AI) is transforming software development and testing. Discover how AI-powered tools are revolutionizing every stage of the software development lifecycle (SDLC), from design and prototyping to testing, deployment, and monitoring.
Learn about:
• The Future of Testing: How AI is shifting testing towards verification, analysis, and higher-level skills, while reducing repetitive tasks.
• Test Automation: How AI-powered test case generation, optimization, and self-healing tests are making testing more efficient and effective.
• Visual Testing: Explore the emerging capabilities of AI in visual testing and how it's set to revolutionize UI verification.
• Inflectra's AI Solutions: See demonstrations of Inflectra's cutting-edge AI tools like the ChatGPT plugin and Azure Open AI platform, designed to streamline your testing process.
Whether you're a developer, tester, or QA professional, this webinar will give you valuable insights into how AI is shaping the future of software delivery.
UiPath Test Automation using UiPath Test Suite series, part 3DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 3. In this session, we will cover desktop automation along with UI automation.
Topics covered:
UI automation Introduction,
UI automation Sample
Desktop automation flow
Pradeep Chinnala, Senior Consultant Automation Developer @WonderBotz and UiPath MVP
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
JMeter webinar - integration with InfluxDB and GrafanaRTTS
Watch this recorded webinar about real-time monitoring of application performance. See how to integrate Apache JMeter, the open-source leader in performance testing, with InfluxDB, the open-source time-series database, and Grafana, the open-source analytics and visualization application.
In this webinar, we will review the benefits of leveraging InfluxDB and Grafana when executing load tests and demonstrate how these tools are used to visualize performance metrics.
Length: 30 minutes
Session Overview
-------------------------------------------
During this webinar, we will cover the following topics while demonstrating the integrations of JMeter, InfluxDB and Grafana:
- What out-of-the-box solutions are available for real-time monitoring JMeter tests?
- What are the benefits of integrating InfluxDB and Grafana into the load testing stack?
- Which features are provided by Grafana?
- Demonstration of InfluxDB and Grafana using a practice web application
To view the webinar recording, go to:
https://www.rttsweb.com/jmeter-integration-webinar
GraphRAG is All You need? LLM & Knowledge GraphGuy Korland
Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs.
1. Unifying Large Language Models and Knowledge Graphs: A Roadmap.
https://arxiv.org/abs/2306.08302
2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs:
https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/
Neuro-symbolic is not enough, we need neuro-*semantic*Frank van Harmelen
Neuro-symbolic (NeSy) AI is on the rise. However, simply machine learning on just any symbolic structure is not sufficient to really harvest the gains of NeSy. These will only be gained when the symbolic structures have an actual semantics. I give an operational definition of semantics as “predictable inference”.
All of this illustrated with link prediction over knowledge graphs, but the argument is general.
The Art of the Pitch: WordPress Relationships and SalesLaura Byrne
Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes?
All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024Tobias Schneck
As AI technology is pushing into IT I was wondering myself, as an “infrastructure container kubernetes guy”, how get this fancy AI technology get managed from an infrastructure operational view? Is it possible to apply our lovely cloud native principals as well? What benefit’s both technologies could bring to each other?
Let me take this questions and provide you a short journey through existing deployment models and use cases for AI software. On practical examples, we discuss what cloud/on-premise strategy we may need for applying it to our own infrastructure to get it to work from an enterprise perspective. I want to give an overview about infrastructure requirements and technologies, what could be beneficial or limiting your AI use cases in an enterprise environment. An interactive Demo will give you some insides, what approaches I got already working for real.
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Ramesh Iyer
In today's fast-changing business world, Companies that adapt and embrace new ideas often need help to keep up with the competition. However, fostering a culture of innovation takes much work. It takes vision, leadership and willingness to take risks in the right proportion. Sachin Dev Duggal, co-founder of Builder.ai, has perfected the art of this balance, creating a company culture where creativity and growth are nurtured at each stage.
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...UiPathCommunity
💥 Speed, accuracy, and scaling – discover the superpowers of GenAI in action with UiPath Document Understanding and Communications Mining™:
See how to accelerate model training and optimize model performance with active learning
Learn about the latest enhancements to out-of-the-box document processing – with little to no training required
Get an exclusive demo of the new family of UiPath LLMs – GenAI models specialized for processing different types of documents and messages
This is a hands-on session specifically designed for automation developers and AI enthusiasts seeking to enhance their knowledge in leveraging the latest intelligent document processing capabilities offered by UiPath.
Speakers:
👨🏫 Andras Palfi, Senior Product Manager, UiPath
👩🏫 Lenka Dulovicova, Product Program Manager, UiPath
2. 1
The advent of cookies since the inception of the
internet has particularly helped marketers and
advertisers to cash in on much profit through online
users' personal data. But this is the competitive edge
that only a handful of companies can enjoy anymore.
With so much on the plate for your business, be mindful
of how you want to start attending to your company's
data governance system and building a relationship
with your customers. And this could be achieved only
through one thing: Cookie consent.
Everythingaboutcookieconsent
Requesting your customers to either accept or reject
the usage of cookies on their devices when they visit
your website through a cookie banner or cookie policy
is referred to as cookie consent. Different ways to
obtain cookie consent:
• Browsers can prompt users to accept or reject
cookies when they visit your website for the first
time.
• Website operators can notify customers of the use
of cookies and also link to the privacy policy page
for further information.
• Some websites can redirect to a different page
where the user can choose specific types of
cookies they want to allow.
A-ZGuidetoCookieConsentandCookie
LawsAroundtheWorld
3. 2
Cookies:AMarketer’sLifeline
Cookies provide valuable insights that help businesses build tailored content
and products and services that people would love to buy. This enhances their
user experience, thus, their trust in the brand.
'Session' and 'Persistent' cookies
When cookies expire as soon as the user exits their browser (at the end of the
browser session), they are called 'session cookies.'
When cookies are stored for more extended periods, they are 'persistent
cookies.’
Types of data that cookies can collect:
Cookies:Thegood,thebad,theugly
TheGood
• Online activity and habits
• Hobbies and interests
TheBad
• Sharing Data without consent
• Irrelevant Adverts
TheUgly
• Exposing sensitive personal data
• Online platform addiction through
in-depth behavior profiling.
4. 3
'First-party'and'Third-party'cookies
First-party cookies are deployed on the users' devices
directly by the website, i.e., the URL displayed in the
browser's address bar.
Third-party cookies are deployed by domains other than the
website the user visits.
Similartechnologies
'Similar technology' means another way of collecting digital
data with the same functionality as a cookie. This may include
specific characteristics to identify devices so that visits to a
website can be analyzed.
These similar technologies include:
• Fingerprinting techniques
• HTML5 Local storage
• Local shared objects
• scripts
• tracking pixels
Cookies:AMarketer’sLifeline
Some examples of device fingerprinting:
• CSS information
• JavaScript information
• HTTP header information
• Data exposed by specific network
protocols
• Data derived by device configuration
• installed plugins within the browser
• installed fonts
• Clock information
• TCP stack variation
• Use of any APIs
5. Not all cookies require consent. Like essential cookies, mandatory for
smooth and effective website operation.
Nonessential Cookies require Consent. They are:
• Performance Cookies
• Analytical Cookies
• Advertising Cookies
• Social Media Cookies
• Unclassified Cookies
Data from these nonessential cookies are later used for behavioral
profiling and targeted advertising.
Top10CookieConsentMustHaves
1. Inform your users of cookies
2. Collect consent by cookie purpose
3. Allow users to reject cookies
4. Collect active consent (no scrolling/swiping for consent)
5. Respect your users’ privacy choices
6. Pre-ticked boxes must be set to opt-out
7. Nudging for consent is not allowed
8. Make it easy to withdraw or change consent
9. Collect consent before using cookies
10. Store all user consents for 5 years
Whattypeofcookieneedsconsent?
6. 5
1. Display a cookie banner on a user's first visit
2. Inform users of the cookies and their purposes.
3. Collect users' active consent
4. Provide users with 'accept' or 'reject' cookies button.
5. Give users the option to opt-in to specific cookie categories.
6. Provide detailed information – the name of the cookie provider,
description, and cookie duration
7. Give users a user-friendly option to withdraw consent.
8. Do not use cookie walls that prevent access to the website unless the
user accepts cookies.
9. Do not use pre-ticked boxes
10. Block third-party cookies until the user’s consent
11. Record cookie consents for proof of compliance
12. Do not set cookies if the user is scrolling or continuing to use a website.
Cookie wall vs. paywall, what's the difference?
A cookie wall is a mechanism wherein a user has no option other than to
accept the processing of cookies to get access to the website.
Advertisers monetize content for the user to access it by either a paid
subscription or subscribing with email. This is paywall.
Austrian and French DPAs have already concurred that the paywall system
is valid as long as the subscription to the site gives away the content at a
modest and fair cost so that users' free choice doesn't constrain.
ChecklisttocomplywithEUcookielaw
7. 6
Cookie and data ethics
Data Ethics experts Pernille Tranberg and Gry Hasselbalch discuss how
companies can look at the economic advantage of privacy driven by the
competitive edge.
"Being eco-friendly has become an investor demand, a legal
requirement, a thriving market, and a clear competitive
advantage. Data ethics will develop similarly – just much
faster.."
– (Tranberg Data Ethics, 2016, p.9)
Cookie Banner
A "Cookie banner" is a pop-up or a splash page that the website owner places on
their website/mobile app to take the consent of cookie usage from the user
visiting the website/mobile app.
Types of the cookie banners
Notice Only banner:
This banner simply informs the user of the cookie usage by the website
Notice + Opt-out consent:
This cookie banner informs the website visitor of the cookie being
deployed and provides a disabling mechanism for cookie usage
Notice + Opt-In Consent:
This cookie banner informs the user of the usage of the cookies by the
website and also requests them to either accept or reject the consent to
use cookies before they are deployed
Non-compliancewithCookieLaw?GoodLuck!
Google and Amazon were slapped with a total penalty of $148 Million by French
Regulator CNIL for placing advertising cookies without users' consent
The Spanish DPA fined Vueling Airlines and Twitter a $33,000 fine for not allowing
users to reject the cookie or manage the preference.
TypesofCookieBanners
8. 7
Fines
GDPR: up to 20 million EUR or up to 4% of the annual turnover,
whichever is greater
CCPA: up to $2,500 per violation and $7,500 per violation
that is intentional or involves children (as per CPRA).
VCDPA: Fines for non-compliance with Virginia's VCDPA can
go up to $7,500 per violation.
LGPD: Up to 50 million Real or 4% of the annual turnover,
whichever is higher.
PIPEDA: up to CAD 100,000 per infringement.
Reputationaldamage
Per the Deloitte survey, 87% of top executives report
reputational damage as more detrimental than only other
strategic risks that a company faces.
Penalties
For example, according to Finbold's "Bank Fines 2020"
reports, the Top three US banks, namely Goldman Sachs,
Wells Fargo, and JP Morgan Chase, have paid a total of $7.5
Billion in fines in 2020. Keeping lawsuits separate, the
settlement itself can cost you millions of dollars.
Fines&ReputationalDamage
9. 8
Audits
Audits are time-consuming and take lots of effort.
Being non-compliant with Data Privacy Laws might
demand extra audits to uncover the real reason for
non-compliance.
Legalactionsandimprisonment
In a rare scenario, compliance officers have
personally faced regulatory and government
enforcement actions. Especially after the financial
crash of 2007-2008, regulators and government
agencies have been tough and thoroughly
scrutinized compliance officers' roles and
responsibilities.
Companyshutdown
Being non-compliant with data privacy regulations
is considered illegal, and governing authorities
might take any relevant action on your business.
Companies, by government order, might be shut
down or completely dissolved in case of serious
non-compliance issues.
Fines&ReputationalDamage
10. 9
Dos
• Option to Accept or Reject
nonessential cookies
• Convey the user the purpose of using
a cookie, the types of cookies used,
and your data will be processed.
• Give people in-depth information
about cookies by linking to your
cookie policy page
• Informing users about third-party
vendors/cookie providers
• Specify the duration of the cookie
(Cookie's expiry date)
• Informing the user of sharing/selling
of personal data
Donts
• Placing your cookie banner at the
corner of the screen or behind other
page elements makes visibility
harder.
• Using ambiguous and legalese in your
cookie banner.
• Assuming and deploying
nonessential cookies without the
consent of the user.
• Not being up to date with the latest
changes in cookie regulations.
• Having pre-ticked boxes in the
cookie banner for nonessential
cookies
DosandDontsofCookieConsent
ImplementingCookieconsentonyourwebsite
There are various methods to implement cookie consent such as:
• So one of the most popular methods is JavaScript libraries and HTML templates
• Another way of implementing cookie consent is through plugins.
• But your best and the less hectic option would be to work with a Consent
Management Platform (CMP) like Adzapiers.
11. 10
CookiecompliancewithAdzapier:
Yourbestdecisionever
Integrating Adzapier's CMP with your business would make you compliant in
minutes, even with the strictest data privacy laws.
Integrating smoothly with your website/mobile app, Adzapier's CMP needs
minimal manual intervention to set up, which doesn't mess up your website's
core vitals.
There are particularly three important components of Adzapier's CMP that
hardly a few other compliance platforms have in the market.
Sessionrecording:
It is how Adzapier records the consent of the user who had given their
consent to use the cookie. This will help you prove your compliance with the
regulatory authority in unforeseen legal issues.
Automatedcookieblocking:
With GDPR making it extremely clear that nonessential cookies can't be
deployed without the user's explicit consent, Adzapier's Auto-cookie
blocking feature helps block nonessential cookies at the user's end until
they give their consent.
Globalcompliance:
Adzapier is updated with the latest changes and amendments to data
privacy compliance so that you don't have to. We comply with the strictest
laws like GDPR and CPRA to other major laws like VCDPA, LGPD, and much
more.
Try Adzapier free for 14 days and see your
business take off.