Coolblue B.V – €40,000 Fine (Netherlands, 2024)
Coolblue B.V. was fined €40,000 by the Dutch data protection authority for collecting personal data through cookies without getting users' clear consent. This is significant because it shows that companies must ask for permission before using tracking tools on their websites.
What happened
Coolblue collected personal data via cookies without explicit consent from users, relying on pre-ticked consent boxes.
Who was affected
Website visitors of Coolblue who had their data collected without proper consent were affected.
What the authority found
The authority found that the company violated GDPR rules by not obtaining valid consent for data collection.
Why this matters
This case highlights the importance of clear consent mechanisms for businesses using cookies, as failing to do so can lead to hefty fines.
GDPR Articles Cited
View original scraped data
Original data from scraper before AI verification against source document.
The Dutch DPA has imposed a fine of €40,000 on Coolblue. The company collected personal data via cookies without users' explicit consent, relying on pre-ticked consent boxes.
Violations (2)
Cookie consent checkboxes are pre-selected by default, violating the requirement for active, affirmative consent.
Art. 4(11) GDPR
Non-essential cookies (tracking, advertising) are placed on the user's device before obtaining valid consent.
Art. 6(1) GDPR
Related Enforcement Actions (0)
No other enforcement actions found for Coolblue B.V in NL
This is the only recorded action for this entity in this jurisdiction.
Similar Cases
Enforcement actions with similar violations
Details
Fine Date
23 December 2024
Authority
Autoriteit Persoonsgegevens
Fine Amount
€40,000
Enforcement Tracker ID
ETid-2509
About this data
Cite as: Cookie Fines. Coolblue B.V - Netherlands (2024). Retrieved from cookiefines.eu
Last updated: