Company – €20,000 Fine (Croatia, 2024)
A company in Croatia was fined EUR 20,000 for processing personal data through cookies without getting valid consent. The Croatian data protection authority found that the company loaded cookies before users agreed to them and did not provide clear information about the cookies. This case highlights the need for businesses to ensure they have proper consent mechanisms in place for online tracking.
What happened
The company processed personal data through cookies that were placed on users' devices before obtaining consent.
Who was affected
Website visitors whose data was collected through cookies without consent were affected.
What the authority found
The authority ruled that the company violated GDPR by failing to obtain valid consent for cookie usage and providing inadequate information about them.
Why this matters
This ruling serves as a warning for businesses to review their cookie consent practices and ensure they comply with privacy regulations.
GDPR Articles Cited
View original scraped data
Original data from scraper before AI verification against source document.
The company processed personal data through cookies without valid consent, as cookies were loaded before consent and cookie information was inadequate.
Violations (2)
Non-essential cookies (tracking, advertising) are placed on the user's device before obtaining valid consent.
Art. 6(1) GDPR
The cookie banner or cookie policy provides vague, incomplete, or unclear information about what cookies are used and why.
Art. 12, 13 GDPR
Related Enforcement Actions (3)
Other enforcement actions involving Company in HR
Fine
€20K
Similar Cases
Enforcement actions with similar violations
Details
Fine Date
26 February 2024
Authority
Agencija za zaštitu osobnih podataka
Fine Amount
€20,000
Enforcement Tracker ID
ETid-3103
About this data
Cite as: Cookie Fines. Company - Croatia (2024). Retrieved from cookiefines.eu
Last updated: