Securiti announces a $75M Series C Funding Round
ViewOn 26 October, Luxembourg’s data protection authority CNPD published new guidelines on the use of cookies and similar tracking technologies. This article provides an overview of the Guidelines that will help websites implement legally compliant cookie consent solutions.
Let’s look into some of the key points highlighted by the CNPD in this Guidelines:
The user’s consent is not needed for the use of essential cookies or other corresponding technologies. Essential cookies are those that are either used to carry out the transmission of a communication over an electronic communications network or are strictly necessary for the provision of the services explicitly requested by the user. This includes cookies used for the following purposes:
Even if consent is not required for the use of essential cookies, the CNPD recommends websites to inform users of their use and whether or not such cookies involve the processing of personal data. Where essential cookies involve the processing of personal data, the cookie banner must contain a link to a more detailed cookie policy or privacy policy, having all the mandatory information as required under Article 13 of the GDPR.
All non-essential cookies and similar tracking technologies require the consent of the user. This includes cookies used for the following purposes:
Consent for the use of non-essential cookies must be informed, freely-given, specific and unambiguous. The CNPD recommends websites to contain the following information in their cookie consent banners:
For consent to be freely-given, the CNPD reminds data controllers to avoid the use of any dark patterns while obtaining consent from users. It provides the following list of dark patterns that must be avoided in all circumstances:
The idea is that data controllers must not mislead users, consciously or unconsciously, and present accept and reject choices in an identical manner. Moreover, users must be able to provide consent to cookies based on their purposes.
Withdrawing consent must be as simple and easy as accepting cookies. Where the “I accept all” button is shown on the first information layer of the cookie banner, the “I refuse all” button must also be displayed on it. The CNPD emphasizes that the user must be able to withdraw consent, for example, by means of a clear link titled “Cookie Management” displayed at the bottom of each page or a floating icon.
After the period of 12 months, consent must be requested again from the user. Consent may be requested earlier in case of any change of data categories, processing purposes, or any other significant change with respect to user’s choice. The CNPD also recommends maintaining records of consent in a time-stamped manner for the purposes of demonstrating compliance.
Securti’s Cookie Consent Management Solution enables organisations to build cookie consent banners in accordance with the applicable legal requirements. It can help you comply with Luxembourg’s Guidance on cookies with the help of the following features:
Some of our features
Ask for a DEMO to understand how Securiti can help you comply with the GDPR and a whole host of other global privacy laws and regulations with ease.
Elegant Consumer Frontend, Fully Automated Backend, Privacy Regulation Intelligent Everywhere.
Looks like this email is already registered with an existing account.
Looks like there was an error completing your request, Please contact us here for further support.
Please do not close this window while we process your request
Get all the latest information, law updates and more delivered to your inbox
October 13, 2020
On 1 October 2020, the Commission nationale de l'informatique et des libertés, the French Data Protection Authority (CNIL) published its amended guidelines on...
November 10, 2020
The deadline to implement the Updated Guide on the Use of Cookies (Updated Guide) released by the Agencia Española de Protección de Datos, the...
January 27, 2021
Organizations heavily rely on cookies for various ways of online advertising. Cookies collect user’s personal information, share, disclose or sell it to other parties...
At Securiti, our mission is to enable enterprises to safely harness the incredible power of data and the cloud by controlling the complex security, privacy and compliance risks.
Copyright © 2023 Securiti · Sitemap · XML Sitemap
[email protected]
300 Santana Row Suite 450. San Jose,
CA 95128