Products
By Use Cases By Roles
Data Command Center
View
Learn more

AI Security & Governance

Discover, assess, and safeguard AI usage

Learn more

Asset and Data Discovery

Discover dark and native data assets

Learn more

Data Access Intelligence & Governance

Identify which users have access to sensitive data and prevent unauthorized access

Learn more

Data Privacy Automation

PrivacyCenter.Cloud | Data Mapping | DSR Automation | Assessment Automation | Vendor Assessment | Breach Management | Privacy Notice

Learn more

Sensitive Data Intelligence

Discover & Classify Structured and Unstructured Data | People Data Graph

Learn more

Data Flow Intelligence & Governance

Prevent sensitive data sprawl through real-time streaming platforms

Learn more

Data Consent Automation

First Party Consent | Third Party & Cookie Consent

Learn more

Data Security Posture Management

Secure sensitive data in hybrid multicloud and SaaS environments

Learn more

Data Breach Impact Analysis & Response

Analyze impact of a data breach and coordinate response per global regulatory obligations

Learn more

Data Catalog

Automatically catalog datasets and enable users to find, understand, trust and access data

Learn more

Data Lineage

Track changes and transformations of data throughout its lifecycle

Learn more

Compliance Management

Automate Compliance with Global AI and Data Frameworks using Common Controls and Tests
Data Controls Orchestrator
View
Data Command Center
View
Sensitive Data Intelligence
View

Asset Discovery
Data Discovery & Classification
Sensitive Data Catalog
People Data Graph
Learn more

Privacy

Automate compliance with global privacy regulations

Data Mapping Automation

View

AI Security & Governance

View

Data Subject Request Automation

View

People Data Graph

View

Assessment Automation

View

Cookie Consent

View

Universal Consent

View

Vendor Risk Assessment

View

Breach Management

View

Privacy Policy Management

View

Privacy Center

View

Learn more

Security

Identify data risk and enable protection & control

Data Security Posture Management

View

AI Security & Governance

View

Data Access Intelligence & Governance

View

Data Risk Management

View

Data Breach Analysis

View

Learn more

Governance

Optimize Data Governance with granular insights into your data

Data Catalog

View

Data Lineage

View

Data Quality

View

AI Security & Governance

View

Compliance Management

View
Data Controls Orchestrator
View
Solutions
Technologies

Covering you everywhere with 1000+ integrations across data systems.

Snowflake

View

AWS

View

Microsoft 365

View

Salesforce

View

Workday

View

GCP

View

Azure

View

Oracle

View

Databricks

View

Learn more

Regulations

Automate compliance with global privacy regulations.

US California CCPA

View

CPRA
California Privacy Rights Act

View

European Union GDPR

View

Thailand’s PDPA

View

China PIPL

View

Canada PIPEDA Compliance Solution

View

Brazil's LGPD

View

+ More

View

Learn more

Roles

Identify data risk and enable protection & control.

Privacy

View

Security

View

Governance

View

Marketing

View
Resources

Blog

Read through our articles written by industry experts

Collateral

Product brochures, white papers, infographics, analyst reports and more.

Knowledge Center

Learn about the data privacy, security and governance landscape.

Securiti Education

Courses and Certifications for data privacy, security and governance professionals.
Company

About Us

Learn all about Securiti, our mission and history

Partner Program

Join our Partner Program

Contact Us

Contact us to learn more or schedule a demo

News Coverage

Read about Securiti in the news

Press Releases

Find our latest press releases

Careers

Join the talented Securiti team

Cookie Consent Requirements in Slovakia

Slovakian cookie consent requirements banner

By Anas Baig | Reviewed By Maria Khan

Published November 23, 2022

On 9 November 2022, the Office for the Protection of Personal Data for the Slovak Republic (ÚOOÚ) published updated guidance on the use of cookies. Prior consent is required for the use of cookies except for those cookies that are considered absolutely necessary or essential to provide the website service expressly requested by the user.

The ÚOOÚ reminds organizations that the consent for the use of non-essential cookies must be freely given, specific, informed, unambiguous, and as per the requirements of the GDPR.

This article provides an overview of the Slovakian Guidance that will help companies ensure compliance with Slovakian consent requirements for the use of cookies.

Freely given consent implies real choice and control with the data subject. Consent is not valid where the user is forced to give consent or suffers negative consequences for not providing consent.

For consent to be considered freely given, access to services and functions of the website should not be made conditional to the data subject’s acceptance of the use of cookies. This means that the website user must be able to continue the use of a website even if he/she chooses to not accept non-essential cookies. Any cookie banner that covers an entire website and requires users to give consent in order to be able to use the website is construed as forcing consent.

Moreover, website users must have the option to close the cookie consent banner without accepting cookies, for example, by clicking on the X button on the top right corner of the banner. If the user clicks on the X button with the intention of closing the banner, the website operator is not authorized to activate any non-essential cookies.

As per the GDPR, the data may be processed only for specified, explicitly stated and legitimate purposes. For any processing of data for purposes other than those that have been communicated to the data subject, the data controller must obtain fresh consent from the data subject so that they retain control over their personal data. This means a website operator cannot use cookies for marketing purposes if users are informed that cookies will only be dropped for statistics and traffic analysis.

Also, users must be able to consent to specific categories of cookies based on their purposes. The ÚOOÚ notes that consent is not considered freely given if the user is unable to grant separate consent for separate cookie purposes.

To ensure user transparency, the data controller must provide the following information to data subjects while obtaining their consent:

The identity of the data controller,
The purpose of all processing operations for which consent is required,
The category of data to be obtained and used,
The existence of the data subject’s right to withdraw consent,
Information on the use of data for automated decision-making where applicable,
Any possible risks associated with cross-border data transfer due to the absence of an adequacy decision and appropriate safeguards, and
The list of all organizations with whom user’s personal data is shared via cookies. The list needs to be regularly updated so as to allow the data subject to grant consent for specific organizations.

For providing all the relevant information to data subjects, a cookie consent banner and a cookie policy may be used. Where a cookie consent banner provides the necessary and most important information in a clearly formulated manner, a cookie policy, located on the website, consists of detailed information on cookies that can help users make an informed choice.

A cookie banner should contain detailed information on the classification of essential and non-essential cookies and should describe the purpose of each cookie category. The cookie consent banner may provide the link to the cookie policy if a user seeks detailed information.

The data subject’s consent must be clear and deliberate so that there remain no doubts about his/her intention. Moreover, all non-essential cookie categories, such as marketing and analytics, should be turned off by default.

The data subject must have the right to withdraw consent at any time without any adverse consequences, and such an option should be easily accessible. The withdrawal of consent must be as easy for the user as giving consent, and consent withdrawal must not affect the lawfulness of prior data processing based on consent.

Use of Language and Colors on Banners

Data controllers must use appropriate and clearly understandable language on consent banners for the consent to be considered freely given and informed, and to not force users to consent.

The wording used on consent banners for obtaining consent must clearly denote users’ agreement. For this purpose, the ÚOOÚ emphasizes that the term “I Understand” is not recommended if the website drops non-essential cookies, and instead, unambiguous terms such as “I Agree” or “Accept” should be used so that the user would know that he/she has a choice and may express their consent unequivocally. However, the term “I understand” can be used if the website drops only essential cookies as it draws attention to this fact in order to increase transparency.

It is possible to not provide any “accept” field on the first information layer of the banner provided that the consent banner provides “Reject All” and an “Edit Settings” field that includes the option for the user to select all options.

Moreover, the colors of all fields on the consent banner must be the same so that the user is not instinctively prompted to click any of the options. For example, having an “Accept All” button in green and other options in red is not allowed because such a consent design would prompt the user to click on the “Accept All” option.

How Can You Demonstrate Compliance with Securiti?

The ÚOOÚ has emphasized that the burden to prove that the users have consented freely to the use of cookies falls upon the website operator. The website operator, as a data controller, must be able to demonstrate that they have obtained users’ consent for the processing of data, as per the requirements applicable in Slovakia.

Securiti’s Cookie Consent Solution helps organizations comply with cookie consent requirements with the help of the following features:

The implementation of an opt-in cookie consent banner;
The ability to design equally prominent accept and reject fields on the cookie consent banner;
Configurable consent preference centers allowing granular consent opt-ins and opt-outs and honoring immediate consent revocations; and
Updated and comprehensive consent records to help demonstrate compliance.

Ask for a DEMO today to understand how Securiti can help you comply with global data privacy laws.

Use of Language and Colors on Banners

How Can You Demonstrate Compliance with Securiti?

Newsletter

Company

Resources

Terms

Get in touch

Cookie Consent Requirements in Slovakia

Freely Given Consent

Purpose Specific Consent

Informed Consent

Unequivocal Consent

Withdrawal of Consent

Use of Language and Colors on Banners

How Can You Demonstrate Compliance with Securiti?

Join Our Newsletter

Share

More Stories that May Interest You

Understanding Valid Consent Requirements : A Closer Look at the Draft Guidelines Issued by the Quebec Data Protection Authority

Cookie Consent Requirements in Australia

Consent Requirements Under Thailand’s Data Protection Framework

Newsletter

Company

Resources

Terms

Get in touch

What'sNew

What's
New