Reject All

Cookies should be as easy to accept as to reject. If a cookie banner has an "Accept All" button, then it should have a "Deny All" button.

The Hamburg Commissioner for Data Protection and Freedom of Information (HmbBfDI) recently stated this conclusion in a notice to Googe that its Cookie Consent Banners were not in compliance with the GDPR (see link). And, after receiving a 150 million Euro fine by CNIL, the French Data Protection Regulatory, Google has agreed and will add a "Reject All" button to its European cookie consent banners (see link).

I wonder how long it will take other large business to add a similar Reject All. As of April 24, Reuter's cookie consent notice still has two buttons "Accept All" and "Show Purposes".

Image from Wix