This article originally appeared in Information Security Buzz on March 12, 2019.

The Dutch Data Protection Authority says that cookie walls that force consumers to accept tracking cookies is not compliant with The EU’s General Data Protection Regulation.  

Expert Comment below: 

Chris Olson, CEO at The Media Trust: 

“For years, the internet has enabled organizations to conduct surveillance on unwary consumers. This practice is now being upended by GDPR, the California Consumer Privacy Act (CCPA) and similar laws being passed around the world. To demonstrate their seriousness about protecting consumer privacy, GDPR regulators are closing the loopholes on obtaining site visitors’ consent for collecting their behavioral and personal data. And they are not alone in clamping down on websites that deny access to consumers who exercise their privacy rights. Under CCPA, companies cannot discriminate against Californians who decline the collection and distribution of their information. The key take-away here is for companies to operationalize the spirit of these laws. Doing so will not only lower the risk of infringement but also build customer trust, which is essential to the customer experience.”