Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Cookie law was.

GDPR isn't a cookie law.

What we see now is big companies response: they try to pretend like it is, and try to blame it on lawmakers.

But, as fines like this show: they are getting caught and punished for it.

Because the law didn't say that companies had to force users to accept cookies.

It said something along the lines of: collecting data is only allowed with users active, informed consent.



I've also seen a lot of other sneaky bypassing of the law.

For example the news site nu.nl now requires having a free account to read many specific articles. This is a smart move on their part because logging in requires maintaining a higher amount of user information across visits and thus it brings a lot of tracking into the "technically necessary" realm so they don't have to ask permission.


And 'inverse checkboxes': checkbox isn't checked (good), but text reads 'check the box if you don't want to receive our newsletter'.

Marketeers just won't play nice until they are fined big time.




Consider applying for YC's Winter 2026 batch! Applications are open till Nov 10

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: