The CJEU is the Court of Justice of the European Union. According to the europa.eu, “The Court of Justice of the European Union (CJEU) interprets EU law to make sure it is applied in the same way in all EU countries, and settles legal disputes between national governments and EU institutions.
It can also, in certain circumstances, be used by individuals, companies or organisations to take action against an EU institution, if they feel it has somehow infringed their rights.
What was the ruling?
The CJEU ruled against the online gambling site, Planet49, and found:
This means that companies using ‘implied consent’ or similar tactics will likely need to reevaluate their approach and move toward “prior consent.”
What is prior consent?
What other implications does the CJEU decision have?
The information stored on the cookie – or any tracker for that matter – does not have to contain “personal data” for it to be subject to ePrivacy Directive (ePD) and therefore GDPR. The intent of the law is to protect users from being identified without the tools necessary to consent to such actions.
What action should I take to align with the ruling?