CNIL Hits Google With €150 Million Fine Over Cookie Consent Violations

Share on facebook
Share on twitter
Share on linkedin
Share on reddit

The Commission Nationale de l’Informatique et des Libertés, the French Data Protection Agency, has issued a 150M Euro fine against Google and a 60M Euro fine against Facebook/Meta for cookie consent violations.

Here are some key takeaways, and their US relevance:

It must be as easy to refuse cookies as it is to accept them. An “accept all” button requires one action to accept. A process with a “manage options” that leads you to another screen where you scroll (or unclick) and the click an “accept” button to reject cookies – is three actions. Therefore, the consent is not freely given for the purpose of the ePrivacy directive. (That is important for CCPA/CPRA, where the regs also say that the process for opting out should be as easy as the one for opting in.) The modalities allowing users to consent or refuse must be presented in a

Read more

Explore the site

More from the blog

Latest News