Life With GDPR: Cookie Compliance
Universal Consent: Building Beyond Cookie Consent
Data Dividend: What is Personal Data Worth?
Privacy Litigation Trends: Meta Pixels, Cookie Opt-Out, and Sale of Data
Data Revolution: How U.S. Privacy Laws Change the Way Data Should be Managed by Retail and Tech Industries
Fashion Counsel: Privacy in the Retail Fashion Industry
E8: Interview with Cookiebot CEO on Technical Solutions to GDPR Readiness
On 15 April 2025, the Dutch Data Protection Authority (DPA) issued warnings to 50 organisations, including online retailers, media companies, and insurers, for deploying misleading cookie banners or unlawfully placing...more
Countless hours are being spent categorizing cookies and other tracking technologies to work with consent management platforms, part of a purpose-built industry aiming to help companies deal with the increasingly complex and...more
Would you like some milk with those website cookies? We know the common privacy joke. However, website cookies and online tracking technologies (collectively, “cookies”) are increasingly no joking manner as they can create...more
With the advent of ad blockers, it seemed like we were just on the cusp of distraction-free web browsing—and then data privacy regulations had to come along. Now, nearly every website has to bombard you with cookie popups and...more
The French Data Protection Authority imposed a €280,000 fine for GDPR infringements and a €100,000 fine for violation of French cookie rules. On 11 May 2023 the French Data Protection Authority (the CNIL) handed down its...more
When it comes to website privacy compliance, cookies have consistently presented the most fraught issues for U.S. businesses. This is especially true for those businesses that find themselves in a sometimes new or often...more
What does the Court of Justice of the European Union (CJEU) Advocate General’s opinion in the case of Meta vs. the German Bundeskartellamt tell us regarding the scope of what constitutes “sensitive information,” “contractual...more
Specifically, the group is alleging that websites are commonly using deceptive cookie banners that do not adhere to the GDPR’s express consent requirements. In early August, the European Union data protection advocacy...more
On May 25th, the Belgian Supervisory Authority (“GBA”) announced that it had imposed a fine of EUR 50,000 on a Belgium-based news media company for using cookies on its websites without complying with applicable cookie law...more
France’s data protection regulator (the CNIL) said this week it has fined Google and Facebook a combined €210 million for breaches of laws on cookies use and tracking of user online activity. These fines were not under the...more
The privacy organisation noyb will file more than 10,000 complaints for use of cookies contrary to its interpretation of compliance. On 31 May 2021, the nonprofit privacy organisation noyb (short for “none of your...more
On 31 May 2020, Max Schrems' organization, NOYB, launched a new campaign aimed at ending what they dramatically refer to as the “cookie banner terror.” The campaign was spearheaded by sending over 560 draft complaints to...more
The regulation of cookies and similar tracking technologies is rapidly evolving, not only in the European Union and United Kingdom but also in the United States and globally. If you have visited a website recently, you might...more
Website operators are not permitted to use cookies and similar tracking technologies for analysis and marketing purposes without the informed consent of users, if this involves sharing personal data with third parties and...more
CCPA / CPRA for US and EU businesses - Deep dive on CCPA's impact on European Businesses: A webinar for German and European businesses. Main Topics - Is my business affected by CCPA and why? - I am already GDPR...more
For 25 years – since the introduction of Internet Explorer 2 – our browsers supported third-party cookie technology that formed the basis of internet advertising. The cookie party is ending. Tech lawyers and business...more
On May 4, 2020, the European Data Protection Board (EDPB) adopted two important revisions to its 33-page Guidelines on Consent (Guidelines) under the General Data Protection Regulation (GDPR). The Guidelines are highly...more
5% There are two situations in which the GDPR purports to apply extraterritorially to companies that have no contact to the European Union. The first situation, described in Article 3(2)(a) of the GDPR, occurs when a...more
It is impossible to browse the Internet without bumping into a popup window requesting consent to enable cookies on the web page. Website cookies are text files saved to devices that contain information about a person’s...more
With the enactment of the European General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act ("CCPA”), retailers have been forced to cope with a shifting privacy landscape that impacts the data that...more
With the enactment of the European General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act ("CCPA”), companies have been forced to cope with a shifting privacy landscape that impacts the data that...more
The terms “cookie notice” or “cookie banner” refer to a banner, splash page, or other notice that deploys on a website to inform visitors that the site uses cookies. While such disclosures are fairly ubiquitous in the...more
Yes. Most cookie banners can be classified into one of three general categories: (1) notice only banners, (2) notice + opt-out banners, and (3) notice + opt-in banners. If a company chooses to adopt a cookie banner that...more
Likely not. While the UK’s Privacy and Electronic Communications Regulation suggests that, in some circumstances, consent may be inferred when a subscriber amends or sets controls in an internet browser, the ICO has...more
No. The English supervisory authority, the ICO, has stated that consent requests must be “clearly distinguishable from other matters” and that bundling consent as part of terms and conditions in impermissible. According to...more