Cookie Consent Violations That Lead to Fines
10 types of cookie consent and ePrivacy violations that have resulted in enforcement actions. Select a violation type to see related cases, fines, and enforcement patterns.
The most enforced cookie violation is "Cookies Placed Before Consent" with 303 actions and €1.5B in total fines, followed by "Third-Party Cookies Without Consent" (146 actions). Each violation type is classified by severity (critical, high, medium, low) based on its impact on user consent rights.
Data current as of 6 March 2026 · Updated daily
Cookies Placed Before Consent
critical
technical303 actions·Median: €40K
€1.5B
total fines
Third-Party Cookies Without Consent
critical
technical146 actions·Median: €104K
€630.7M
total fines
Unclear Cookie Information
high
information97 actions·Median: €30K
€545.3M
total fines
No Reject Button
critical
banner_design58 actions·Median: €178K
€725.3M
total fines
Misleading Banner Messaging
critical
consent_management54 actions·Median: €50K
€412.9M
total fines
Reject Harder Than Accept
critical
banner_design35 actions·Median: €900K
€577.5M
total fines
Cannot Withdraw Cookie Consent
critical
consent_management33 actions·Median: €50K
€217.9M
total fines
Pre-ticked Consent Boxes
high
banner_design28 actions·Median: €50K
€23.5M
total fines
No Granular Cookie Choice
high
consent_management26 actions·Median: €50K
€326.8M
total fines
Cookies Persist After Rejection
critical
technical17 actions·Median: €1.6M
€168.4M
total fines