Although the journey for Turkey is just beginning, cookies have become a very popular topic of discussion in Europe in recent years. Most organizations use cookies to effectively use their advertising and marketing activities and to retarget them, to gain wider audiences, and of course, basically to increase their income. However, this use requires intensive collection and processing of personal data. However, hard-to-destroy cookie walls are being built for the “average consumer” whose background processing activities are far from being easily understood and managed.
The best summary of the final point reached today is the famous privacy activist Max Schrems: “A whole industry of consultants and designers develop crazy click labyrinths to ensure imaginary consent rates. Frustrating people into clicking ‘okay’ is a clear violation of the GDPR’s principles. Under the law, companies must facilitate users to express their choice and design systems fairly. Companies openly admit that only 3% of all users actually want to accept cookies, but more than 90% can be nudged into clicking the ‘agree’ button”
Current Issues In Cookie Compliance
As can be seen in the image above, the control of cookies is made “difficult” with great effort.
Although, the section on cookies in EU legislation is quite clear: “…Users should have the opportunity to refuse to have a cookie or similar device stored on their terminal equipment. …The methods for giving information, offering a right to refuse or requesting consent should be made as user-friendly as possible.”
The practice we frequently encounter in daily life on the subject is that while it is very easy to accept all cookies, an option such as rejecting all cookies is not used on almost any site (Luckily, Jurcom GRC Services allows you to reject all cookies with a single click.) and it is very difficult to turn off the use of cookies.
When we evaluate it fundamentally, we can say that the use of the legislation is wanted to be disabled with “design” and move away from the essence of the regulation.
In particular, the French Data Protection Authority (CNIL) publishes very detailed guides in order to put an end to this practice, and by giving large fines to large institutions such as Amazon and Google, it intimidates everyone in the industry.
With the intense complaints (It is aimed to make 10,000+ complaints within the campaign.) made by the privacy activist group NOYB (None of Your Business) in addition to CNIL, it is aimed to bring the industry into compliance. Our wish is that all institutions comply with the legislation in a short time and privacy-based designs become widespread.
See also, Facebook Faced Data Breaches After Google
Sources:
https://techcrunch.com/2021/05/30/europes-cookie-consent-reckoning-is-coming/
https://eur-lex.europa.eu/legal-content/EN/ALL/?uri=CELEX%3A32002L0058
https://noyb.eu/en/noyb-aims-end-cookie-banner-terror-and-issues-more-500-gdpr-complaints