It all starts with a simple click.
When visitors land on a website, to perhaps shop for the latest gadgets, read about breaking news, or simply scroll through content, cookies are quietly collecting personal data.
But in order to do this, they need the visitors’ consent.
That’s how e-commerce giant Coolblue recently found itself in the spotlight, facing a €40,000 fine from the Dutch Data Protection Authority (DPA).
This case now serves as a brisk wake-up call for businesses across Europe, emphasizing that cookie compliance isn’t just a box to tick – it’s a legal necessity that can land companies in hot water, no matter their size.
The General Data Protection Regulation (GDPR) is Europe’s flagship privacy law. It’s designed to protect people’s personal data and give them better control over how it’s collected, used, and stored.
For businesses, these regulations set strict requirements around things like transparency, consent, and data processing practices.
If a company fails to comply with GDPR, it can face significant fines.
Coolblue’s cookie practices failed to meet GDPR standards. Instead of requiring active consent, the company made the error of assuming their visitors agreed to cookies by default.
Worse still, its consent banners featured pre-ticked boxes – both of which are clear violations of the GDPR.
Despite being alerted to these issues back in 2019, Coolblue didn’t fully address them until mid-2020 – by which time the DPA had already begun its investigation, which ultimately led to the fine.
For any business that operates under GDPR, this ruling shines a bright light on the importance of obtaining valid consent.
Regulators like the Dutch DPA are intensifying their enforcement of data protection rights, with a particular focus on clear cookie consent practices. Companies that fail to respect user privacy face penalties.
The consequences of noncompliance can go beyond just fines. It can also erode the trust of a company’s customer base and damage brand reputation – which arguably can cost far more than the monetary penalty.
If navigating cookie compliance can feel daunting, you’re not alone.
But the solution doesn’t have to be complicated.
With iubenda’s Privacy Controls and Cookie Solution, businesses of all sizes can get on the road to compliance while maintaining user trust.
Our solution’s features include:
Whether you’re operating in the Netherlands, Germany, Belgium, or beyond, iubenda gives you the tools to aid your business on its journey to compliance.
Don’t wait until the regulators come knocking. Equip your website with iubenda’s Privacy Controls and Cookie Solution to obtain valid cookie consent from your users and a record of such consents for your business.
Attorney-level solutions to make your websites and apps compliant with the law across multiple countries and legislations.
