Most website cookies in UK don’t meet GDPR compliance

Most cookies used in the UK do not consent to European data privacy and GDPR requirements, according to a new study from Aarhus University, MIT and UCL.

Cookies are small files which are kept on a user’s computer which are created when visiting websites. These cookies store data about the customer and can be accessed by the website whenever the user visits it. This enables companies to offer tailored products which meet the customer’s habits.

After scraping the top 10,000 websites in the UK, it found only 11.8% met the minimal requirements set out in law. Its investigation also found that 49% of websites were deploying cookies before they received consent and 28% of sites did not offer any consent method.

Furthermore, it claims the percentage of companies violating the directives stayed the same over the past four years.

The report also investigated how different designs on consent pages impact how much privilege a consumer gives a company.

It found that removing the opt-out button from the first page increases consent by around 22%, while giving granular controls on the first page lowers consent by 8-20%.

Enjoyed the story? 

Subscribe to our weekly RegTech newsletter and get the latest industry news & research

Copyright © 2018 RegTech Analyst


The following investor(s) were tagged in this article.