89% of popular websites in the EU are not AVG compliant.
One of the main reasons for this is that “prior consent” is not well established. Prior consent has to do with asking permission to use cookies on a website. However, cookies may be loaded only after consent is given. A common mistake.
But how do you make sure your website has a good cookie banner and that it doesn’t keep showing, for example?
Or how do you show which cookies and trackers are present on your website?
Managing cookies and trackers on your website is done using a Consent Management Platform. This embraces a cookie scanner, cookie banner, cookie statement and recording consent given in a log.
- Cookies the basics
- Frequently Asked Questions
- Cookie checklist – do I really need a cookie banner?
- Cookie policy interplay between web management,marketing and-legal
- Cookie solution: the visible components
- Cookies and trackers change with regularity
- Consent made simple
- How to Create a cookie policy?
1. Cookie notification and cookie statement – the basics
Want to be compliant in the use of cookies (other than necessary cookies) on your website,
then a cookie notice and a cookie statement is mandatory.
Even if the 3rd party cookie disappears and we move toward 1st party cookies, consent will continue to underlie all future developments such as server side tagging and first-party data. As soon as you collect or compile personal information, you will need to seek consent. A Consent Management Platform (CMP) helps with this.
Inform
The cookie notice informs about the use of cookies and trackers on the website and allows the website visitor to choose which category of cookies will be accepted.
The cookie statement is a detailed overview of the cookies and trackers present on a website. Name, description, purpose and supplier shall be given.
30% of a website’s cookies and trackers change monthly.
Most common mistakes
- Only an “ok” button.
- Showing a cookie notification while cookies are already loaded in the background.
- Pre-ticked check boxes
- No possibility of modifying or revoking the consent given.
- Social shares, embedded content or YouTube ‘no cookie’ that also set cookies and trackers.
- A static cookie statement (PDF), while 30% of cookies change monthly.
Requesting permission
Asking permission to place cookies and trackers is a basic principle of GDPR. Important in this is that cookies and trackers are placed only after consent is given. Unfortunately, this is not well regulated on many websites. It does have a cookie notification, but cookies are loaded “before” consent is given.
This can be overcome with a Consent Management Platform (CMP).
Opportunities!
- Respecting privacy is appreciated by website visitors.
- Setting up “prior consent” and asking permission to place cookies is easier than ever.
- Accepting marketing and statistical cookies contributes to online goals.
If you do not accept cookies, the relevant functionality will not work.
2. Frequently Asked Questions
1. How do I know if my website uses cookies?
Most Web sites use cookies to some extent, even if it is only for essential functions, such as user authentication.
2. Do I need to obtain user consent for all cookies, even essential ones?
No, user consent is only required for non-essential cookies. Essential cookies are those required for the proper functioning of the website, such as cookies that enable user authentication or remember shopping cart contents. Non-essential cookies include data used to track user behavior or serve targeted advertisements.
3. How do I obtain user permission for non-essential cookies?
User consent must be obtained before non-essential cookies are placed on a user’s device. This consent must be specific, informed and voluntary, and cannot be obtained through pre-checked boxes or implied consent. One way to obtain user consent is through a cookie banner or pop-up that clearly explains what cookies are being used and provides an option for the user to opt in or out of non-essential cookies.
4. Can I use third-party cookies on my website?
Third-party cookies, which are cookies set by domains other than the one the user is currently visiting, are often used for advertising and tracking purposes. Under the GDPR, websites must obtain explicit consent from users before using third-party cookies, and must also provide information about the purpose of the cookie and the third-party entity setting the cookie. It is important to remember that using third-party cookies is more risky because you have less control over what these cookies collect and how they are used. So carefully consider whether the use of third-party cookies on your website is essential and whether it is worth the extra steps and risks to obtain user consent.
5. How can I ensure that my website complies with the GDPR regarding cookies?
To make sure your website complies with the AVG regulations for cookies, here are some steps you can take:
- Identify all cookies used on your website, including their purpose and whether or not they are essential.
- Ensure that you obtain user permission for non-essential cookies through a clear and understandable cookie banner or pop-up.
- Keep an updated cookie statement and state in the privacy statement about the use of cookies and how data is used and processed.
- Ensure that all cookies on your website are managed and deleted in accordance with AVG regulations and your cookie/privacy policy.
3. Cookie checklist

Requesting permission
Asking permission to place cookies and trackers is a basic principle of GDPR. Important in this is that cookies and trackers are placed only after permission has been given. Unfortunately, this is not properly set up on many websites. It does have a cookie notification, but cookies are loaded “before” consent is given.
This can be overcome with a Consent Management Platform (CMP).
4. Cookie policy interplay between web management, marketing and legal.
We are happy to advise and help you to make the use of cookies on your website compliant with cookie legislation the GDPR and ePrivacy regulations, as well as to increase control over the use of cookies and trackers. Any website can be successful with the right cookie banner/cookie notice and managing cookies. We do this by sharing tips and trends through our guides, blogs, videos, trainings and e-books.

5. Cookie solution: the visible components
Cookie statement
The cookie statement is a detailed overview of the cookies and trackers present on a website. The cookie statement is created and maintained automatically. Name, description, purpose and supplier shall be given.
30% of a website’s cookies and trackers change monthly.

Privacy declaration
Privacy statement and privacy policy are not explicitly mentioned in the GDPR. However, most Data Protection Authorities do not make a clear distinction between these two terms. Read more about it in the blog“Privacy statement and cookie statement, what’s the difference?“
Cookie notification
The cookie notice informs about the use of cookies and trackers on the website and allows the website visitor to choose which category of cookies will be accepted. Subsequent modification or withdrawal of consent choice is a requirement of GDPR and ePrivacy.

6. Cookies and trackers change with regularity
30% of cookies change on a monthly basis and:
- 72% of cookies are secretly loaded by other third-party cookies
- 18% of cookies are so-called “trojan horses,” e.g., cookies hidden up to 8 layers deep in other cookies.
- 50% of these “trojans” change between repeat visits to a Web site.
Cookies are set on your website when you use Google Analytics or other similar analytics tools. But also other embeded content places cookies e.g. marketing tools like HubSpot, embedded videos from third-party platforms like YouTube or Vimeo, and social media plugins like Facebook or LinkedIn like buttons. These cookies process personal data from your website visitor on your website.
7. Consent made simple
Cookie consent in compliance with GDPR and ePrivacy. Automatic cookie blocking: in a few clicks, your website is GDPR-compliant for the use of cookies. A unique feature in the cookie solution.
Automatic cookie blocking will ensure that cookies, with the exception of “necessary” cookies, are loaded on your website only after a user has given a preference and consent.
8. How to create a cookie policy?
The cookie policy manual discusses the proper use of cookies and trackers. What is the difference between a cookie policy, cookie statement and privacy statement?
And, of course, what a proper cookie notice and cookie statement means under the AVG. Do you also want to get more out of your cookies? Request the cookie policy manual!
-
Cookie policy manual Cookie policy manual
Not ready to implement a cookie solution yet? Read the cookie policy manual.
Google reviews – CookieInfo 4.6 

Melvin Woudenberg | socialbrothers
Super good help, thoughtful and proactive advice. In addition, the tool does exactly what it is supposed to do.

Danny de Haan | Frankwatching
At Frankwatching, we have had a very nice partnership with Cookieinfo for over a year now. If we have questions we get quick answers.

Michel Verdoes | bax shop
Excellent implementation and support! Quick response to questions, personal attention and solution-oriented – great to work with Cookieinfo!
More Google reviews