Cookies – not the biscuit type

Over the weekend the Guardian ran an article about NHS care organisations and their website cookie compliance:

https://www.theguardian.com/society/2023/may/27/nhs-data-breach-trusts-shared-patient-details-with-facebook-meta-without-consent

If your website is using anything like Facebook Pixel this:

  • Must be referenced in your Privacy Notice
  • You must be able to give visitors the chance to decide which cookies they are happy to accept – this is called Do Not Track

The Privacy and Electronic Communication Regulations (PECR) is the legislation covering this. The Information Commissioner is consistently happy to fine organisations for breaches under this – the maximum fine is £500k.

Share this post:

Facebook
LinkedIn