How Cookie Walls Violate GDPR According to the DPA

Published in Member Communities on May 07, 2019

Did you know that you may be in violation of GDPR? According to the DPA (Dutch Data Protection Authority), cookie walls are in violation of GDPR. Compliance can be tricky, but staying on top of the latest information will help keep your organization operating at the highest level of security. Here’s what you need to know about GDPR violations from the security experts at VGM Technologies.

The Importance of GDPR Compliance

General Data Protection Regulation (GDPR) came into effect as of 2018 in the European Union. It mandates that personal data be stored, processed, collected and destroyed safely. Personal data is defined by GDPR as anything that can identify a person. This could be anything as basic as a screen name on social media.

It’s important for organizations outside of the US to be GDPR compliant, because as many have realized, technology is global. US-based companies can still be held liable to GDPR if they handle personal data of a person living in the EU. The financial penalties are severe for noncompliance and this is why it’s important to make sure you are adhering to GDPR regulations. Our cybersecurity vendor partner, ProCircular recently released a very informative article about Regulatory Trends in Privacy and Cybersecurity in 2019. Take a look at their article to get a big picture look of how GDPR fits into privacy and cybersecurity.

What is a cookie wall?

It’s not as great or delicious as it sounds. A cookie wall is when a website requires users to agree to cookie tracking before they can use the website. If you’ve gone onto an advanced website lately, you have probably seen a pop up immediately show on the home page. It asks to accept the use of cookies before allowing you to interact with the site. It seeks to track user behavior on the site so ads can be retargeted to them based on browsing habits.

The DPA’s Stance on Cookie Walls

The DPA has made a firm stance that a cookie wall is not compliant, because it almost always requires a user to select “yes” before continuing using the website. This denies the site visitor to utilize the website without allowing their information to be tracked. The European Data Protection Board states, “In order for consent to be freely given as required by the GDPR, access to services and functionalities must not be made conditional.” However, the DPA says that some cookie pop-ups are less intrusive and do not break GDPR. For example, if a website needs to access cookies in order to provide a service directly asked for by the user or to carry out information, it is allowable.

Additionally, once this information is gathered, companies need to be held accountable for securing the information they collect. As of now, the DPA’s stance is only a statement and not an official ruling. However, we are fairly certain that it will be.

Stay ahead of the GDPR curve. Talk to us about Website Protection to make sure your site is secure and GDPR compliant.


comments powered by Disqus

From Our Experts

Understanding Enrollment Status, Assigned vs. Non-Assigned, and the ABN thumbnail Understanding Enrollment Status, Assigned vs. Non-Assigned, and the ABN A major part of business development is understanding your payer mix and which products and services should be reimbursable versus cash sale items. What could you bundle together in your offering to expand business—specifically items that can be sold for retail alongside your reimbursable items? You might not necessarily offer everything right now, but these are the areas you can look to expand into. This resource outlines how to navigate reimbursement to help grow your business. U.S. Rehab Tech Training at Heartland Addresses All Levels of Experience thumbnail U.S. Rehab Tech Training at Heartland Addresses All Levels of Experience Complex rehab providers attending VGM's 20th Heartland Conference will have the opportunity to increase their expertise in repairing and programming complex rehab wheelchairs as part of U.S. Rehab's Tech Training. VGM & Associates Releases Customer-Centric Playbook thumbnail VGM & Associates Releases Customer-Centric Playbook VGM & Associates has released the third installment of their 2021 quarterly playbook series, which contains insight and best practices for making your business customer-centric. Heartland Session Sneak Peek: Procurement, Inventory Management & Cash Flow thumbnail Heartland Session Sneak Peek: Procurement, Inventory Management & Cash Flow Get great advice and more during the Heartland Conference Panel: Procurement, Inventory Management & Cash Flow moderated by Gerry Finazzo. During this session, attendees will learn how to identify ways to improve purchasing practices, mitigate inventory liability, identify ways to increase cash flow and lower activity costs. An Inside Look with Clint, Episode 8: VGM Government thumbnail An Inside Look with Clint, Episode 8: VGM Government President of VGM & Associates, Clint Geffert, sat down with John Gallagher, vice president of VGM Government, to discuss how VGM Government helps VGM members navigate the complexities of the legislative process and the importance of grassroots advocacy in the HME industry. Member Spotlight: Shelly Hoover, President and Co-Founder, and David Hoover, CEO and Co-Owner of Vets First DME, LLC thumbnail Member Spotlight: Shelly Hoover, President and Co-Founder, and David Hoover, CEO and Co-Owner of Vets First DME, LLC Vets First DME began at the intersection of preparation and opportunity, with a dash of circumstance. Read more about the amazing Hoover family as they combined the family's knowledge and experience to start Vets First DME, LLC. CMS Announces 90-Day Extension For CRT Manual Wheelchair Accessories thumbnail CMS Announces 90-Day Extension For CRT Manual Wheelchair Accessories CMS announced a 90-day extension of the suspension of the application of Medicare Competitive Bidding Program pricing to CRT manual wheelchair accessories. The current policy will stay in place through October 1 and there will not be any payment cuts or claims processing changes. Don't Allow Medicare Advantage Plans and MCOs Take Advantage of YOU! thumbnail Don't Allow Medicare Advantage Plans and MCOs Take Advantage of YOU! The HME supplier has always had challenges in getting paid timely and accurately for the items and services they provide to their customers. This is an assumed cost of doing business but the HME supplier still does this because of the reward of taking care of their customers. But nothing has challenged the supplier as much as when a customer has a Medicare Advantage Plan or an MCO.