Blog

Our blog page offers coverage of privacy laws and information on the latest regulations, including the GDPR, CCPA, LGPD, and CNIL. Stay informed on the latest developments in cookie compliance right here.

What are the Penalties for Violating CCPA

In September 2022, online retailer Sephora agreed to pay $1.2 million for breaching the California Consumer Privacy Act (CCPA) - the first time public enforcement action was taken by the California Attorney General since the law’s introduction in 2020.

Do I need a Cookie Policy on my Website?

Many regions around the world require a cookie policy as part of data protection laws - for example, California’s California Consumer Privacy Act (CCPA) or the EU’s General Data Protection Regulation (GDPR). These laws make a cookie policy a legal requirement and failure to comply may result in fines and penalties.

What Rights Does the CCPA Provide to Consumers?

The California Consumer Privacy Act (CCPA) is a landmark in consumer rights regulation, the first of its kind in the USA. It aims to give consumers greater control over how their personal data is collected and used by businesses.

Guide to the CCPA Opt-Out Requirements

The California Consumer Privacy Act (CCPA) is focused on giving consumers greater control over the personal information collected about them. An important part of this is being able to opt out or refuse permission to personal data being used in particular ways.

Guide to CCPA Cookie Banners

Cookie banners help your site to comply with the requirements of the California Consumer Privacy Act (CCPA) that gives California residents the right to have a say on how their personal data is collected and used.

CCPA Compliance Checklist

Meeting the requirements of the California Consumer Privacy Act (CCPA) can be daunting. It’s easy to understand the overall purpose, but the fiddly details of exactly what you need to do to comply are often harder to grasp.

Who Does the CCPA Apply to?

The California Consumer Privacy Act 2018 (CCPA) has impacts far beyond the boundaries of California. The US state has a $4 trillion economy; if California was a country, it would be the fourth-largest economy on the planet. All that trade gives California very wide reach into other economies around the world, which means businesses globally need to understand how CCPA applies to their activities.

Guide to the UK’s Data Protection and Digital Information Bill

The UK government wants to reform data protection laws, removing administrative burden and helping to promote innovation. The challenge is to achieve this without causing disruption or risking trading relationships. So how far is the Data Protection and Digital Information Bill (DPDI) along the road to becoming law, and what changes will it make to your organisation?

How to Comply with CCPA

The California Consumer Privacy Act (CCPA) applies to for-profit businesses collecting or processing the data of California residents - even if they’re out of state. Since California has the largest economy in the USA, the legislation has impacted businesses across the country and beyond since it came into force on January 1 2020.

How to check your website’s compliance quickly & easily

CookieHub’s free compliance checker helps keep you GDRP and CCPA compliant

Implementing cookie consent doesn’t get much easier

If you’re like most people, the idea of adding code to your website is an uncomfortable idea at the best of times, and borderline terrifying at worst. With lines of JavaScript and HTML code inspiring fear in website owners worldwide, the task of remaining compliant with international data privacy laws is a fraught process for many.

How data privacy laws will change in 2023

A Quick and Easy Guide to the New Privacy Laws and How to Stay On Top of Them

Hong Kong’s Personal Data Protection Ordinance

Passed in 1995, Hong Kong’s Personal Data (Privacy) Ordinance (PDPO) is one of Asia’s most established data protection laws.

CPRA vs. CCPA: What’s the Difference?

These Two California Laws Are Shaping the American Privacy and Data Security Environment – Here Is What You Should Know About Them

Thailand’s Personal Data Protection Act – There’s a New Privacy Law You Need to Know About

Similar to GDPR, Enforcement of This Law Began on June 1

Cookie Checker: Does My Website Use Cookies?

Data Privacy Laws Mean You Need to Know Which Cookies You Use

Italy’s New Privacy Guidelines: Here Is What You Need to Know

Cookies Are Impacted by this New Rule – Make Sure Your Operations Comply

You Can Do It! Become a Reseller for CookieHub and Join Our Partner Program

Ready to Grow Something Big? Increasing Your Monthly Income Is Simple

What is the CPPA - Canada's Consumer Privacy Protection Act?

Following other legislators' footsteps, in November 2020, the Canadian House of Commons introduced the Digital Charter Implementation Act (DCIA), also known as Bill C-11. Like similar data privacy laws, the DCIA aims to regulate the collection, distribution, use and disclosure of consumer information used in commercial activities.

What is the APPI - Japan's Data Protection Law?

In June 2020, the Japanese government enacted an amendment to the APPI. The new amended APPI will come into effect on April 1, 2022. Like other data privacy laws worldwide, the APPI aims to protect the personal data of Japanese citizens.

What is POPIA - South Africa's Data Privacy Law?

In July 2020, the South African Parliament enacted POPIA. It is the nation’s latest and most prominent data privacy law governing the personal data of South Africans. With a series of new data privacy laws coming into effect worldwide – such as the GDPR and the CCPA – this marks the latest addition, enhancing South African regulations to reflect new global norms.

What Is a Consent Management Platform?

A Consent Management Platform (CMP) is a solution used by websites and mobile applications to manage and store the consent of their users for collection and use of their personal data. CMP's help organizations to comply with privacy regulations such as GDPR and CCPA by providing a centralized solution for managing and documenting user consent.

What is the CNIL?

Under the EU Charter of Fundamental Rights, all member states were required to create a data protection authority. These agencies are tasked with protecting the rights of EU citizens' data in the member state. The French Data Protection Authority in France is the CNIL.

What is the AEPD?

Across the world, businesses and individuals are now commonly aware of the GDPR. That is a legislative framework governing the collection and use of EU citizen personal data. What’s often less appreciated is the role individual member states play in data protection.

What is PDPA - Singapore’s Personal Data Protection Act?

As the internet has become increasingly globalized, national authorities have taken steps to protect citizens' personal data. That comes after numerous major data breaches from transnational corporations, in addition to the secretive collection of personal data without regulatory oversight. In Singapore, the law on data protection is the PDPA.

What is LGPD - Brazil’s General Data Protection Law ?

The LGPD is the Brazilian General Data Protection Law (Lei Geral de Proteção de Dados Pessoais). It was passed into law by the National Congress of Brazil on 14 August 2018 and came into effect in September 2020.

What is CCPA? (And How to Become Compliant)

While most people working in data protection have heard of the GDPR, the CCPA receives much less attention. Passed by the California State Legislature, the CCPA attempts to give consumers more control over their personal data.

Brexit and the GDPR: What You Need to Know?

When the GDPR came into full effect in May 2018, the United Kingdom (UK) was still a member state of the EU. Though negotiations for the UK's exit from the EU (Brexit) had been ongoing since the referendum in 2016, the UK remained obligated to comply with the GDPR.

Does the GDPR Apply to Companies Outside of the EU?

What Does the GDPR Mean for Business and Consumer Technology Users?

If you’re a business handling personal data, you’ll know: GDPR has changed everything. No longer can organizations freely collect data on people around the world. Now, no matter the organization location, they’re still expected to treat EU citizen personal data in accordance with the GDPR

What is Considered Personal Data Under the GDPR?

Under the GDPR, personal data is defined as any identifiable information about a person. This can include information such as a person's name, address, email address, IP address, biometric data, and more. GDPR is the farthest-reaching data protection legislation in the world. It governs the collection, storage, and destruction of personal data for all citizens of the EU. Nor are organizations located geographically outside the EU exempt. This overarching regulation covers any personal data from EU citizens.

How to be GDPR Compliant?

Following years of data breaches and tech companies’ secretive use of personal data, the EU responded with the GDPR. It governs and regulates the collection and use of personal data for EU citizens. That doesn't just apply to companies based in the EU. It applies to any company to which EU citizens have access – even if the organization does not market to EU citizens directly.

What are the GDPR consent requirements?

The General Data Protection Regulation (GDPR) is now the foundation of online data protection legislation. As it governs all EU citizen personal data, the Regulation is not only applicable to EU-based organizations. Indeed, any website an EU citizen may potentially access is required to meet the GDPR standards

What is GDPR?

If you work in data protection or are just active online, you’ll likely have heard of GDPR. Drafted and passed by the EU, it is the most stringent privacy and security law worldwide. However, GDPR isn’t exclusively related to EU countries. Because GDPR imposes obligations on organisations anywhere in the world if they find themselves in possession of data from EU citizens.

Cookie Law Definitions

When browsing the internet, it’s highly likely that you’ve encountered countless pop-up windows or banners that state the use of cookies and a request for the end-user to allow cookies. This is because of the privacy protection regulations implemented in recent years (i.e. the EU cookie law-2009 ePrivacy Directive and the GDPR), for the purpose of protecting individuals. These recorded consents serve to protect the marketers and companies from legal ramifications.

What is a Tracking Cookie?

Most everyone is familiar with the term “cookie” when it comes to browsing the web, but if you’d like to learn more about the true purpose of a tracking cookie, keep reading.