Cookie Banner

What is a Cookie Banner?

Ever since the General Data Protection Regulation (GDPR) came into effect in May 2018, so-called cookie banners on websites have become the norm. When a user visits a website for the first time, a banner or pop-up window will appear, usually at the bottom of the page informing the user about the processing of personal data.

But what is this all about? A cookie is basically nothing more than a small text file in which information is stored. This allows a web server to recognize a user. Keeping the GDPR in mind, the question now arises: setting cookies without informing the user - is that even possible? The answer is: yes and no. No consent is required for cookies that are necessary for the technical operation of a website (e.g. the shopping cart cookie).

According to recital 30 GDPR, website operators require the consent of their users for the use of certain web technologies such as cookies, tracking and retargeting pixels. It should be noted that the GDPR is not limited to cookies, but includes all technologies that process personal data in any way. The name cookie banner is therefore misleading. A simple cookie banner is not sufficient to implement the GDPR requirements completely and to be fully privacy-compliant on a website.

Are cookies personal data?

Do I need a cookie banner on my website?

Most certainly. The GDPR has extraterritorial character, meaning that it does not apply only to websites and blogs within the EU, but also to all the websites used by EU visitors- meaning every website worldwide.

If website operators use cookies other than those necessary for the technical operation of the website, the provisions of the GDPR regarding the processing of personal user data apply. In order to obtain a GDPR-compliant user consent, a cookie banner is essential and absolutely necessary but is not sufficient on its own.

Requirements for a GDPR-compliant consent management

A legally valid user consent must fulfill numerous criteria within the GDPR regulations and has to be as user-friendly as possible.

To be more precise: A GDPR-compliant consent must not only be given voluntarily in advance, it also has to be documented in a legally secure manner. In addition, the consent has be given informed, explicit and granular. The user must also be able to revoke his consent at any time. Learn more.

Why a cookie banner is not sufficient

How can you ensure that you automatically implement the GDPR consent requirements and have nothing to fear in case of a website audit? And how can you ensure that you can use your tracking data privacy compliant and still play personalized advertising - without fearing fines?

At this point, a Consent Layer or a Consent Management Platform (CMP) such as Usercentrics comes into play, with which you can programmatically obtain, manage and document the consent of your website visitors.

Be 100% GDPR-compliant with Usercentrics

The Usercentrics CMP consists of three main elements: the Privacy Banner (Cookie Banner), the Privacy Center and the Privacy Information Center.

Usercentrics allows you to set up a 100% individual Privacy or Cookie Banner in terms of design, text, data protection strategy (granularity) as well as categorization of integrated technologies. The website operator can thus individualize one’s own requirements. Design your cookie banner according to your ideas and visions, so that it fits flawlessly into the overall website context.

The Privacy Center enables website visitors to define their preferences, as to which technologies their data may or may not be processed and all with just one click. The control element creates great trust in the user and shows the user: Your data is important to us.

The Infocenter informs your users in detail about all technologies integrated on the website. Therefore, you will always meet your information and storage requirements.

Examples of DSGVO-compliant cookie banners

T Mobile AT

Integration of the Usercentrics CMP with individualized categorization of the integrated technologies

Usercentrics CMP Example - T-Mobile AT

Thermondo

Integration of the Usercentrics CMP while obtaining implicit consent through a countdown in the cookie banner

Usercentrics CMP Example - Thermondo

Disclaimer

Usercentrics GmbH does not offer legal advice. The content of this article is not legally binding. The article represents the opinion of Usercentrics.

Newsletter icon
Legal Update
Always up-to-date: With our legal update, we keep you up to date with the latest trends around data protection.
Whitepaper Cookie Consent Management for Enterprises in accordance with GDPR
New Whitepaper
Checklists and practical tips for the correct handling of cookies and user identifiers according to GDPR.