Over the weekend the Guardian ran an article about NHS care organisations and their website cookie compliance:
If your website is using anything like Facebook Pixel this:
- Must be referenced in your Privacy Notice
- You must be able to give visitors the chance to decide which cookies they are happy to accept – this is called Do Not Track
The Privacy and Electronic Communication Regulations (PECR) is the legislation covering this. The Information Commissioner is consistently happy to fine organisations for breaches under this – the maximum fine is £500k.