The European Commission aims to reform the EU’s cookie consent rules that have cluttered websites with intrusive banners asking for permission to track user data[1]. The initiative seeks to streamline data protection while maintaining privacy safeguards through centralized consent mechanisms[1:1].
Cookie consent banners emerged from the ePrivacy Directive (Cookie Law) and GDPR requirements, which mandate websites obtain explicit user permission before collecting non-essential data through cookies[2]. Current rules have led to widespread implementation of pop-up notices that interrupt user experience and often employ confusing interfaces.
The proposed changes reflect growing recognition that the existing approach has “messed up the internet” while failing to provide meaningful privacy protection[1:2]. Rather than requiring individual consent on every website, the Commission is exploring solutions like centralized consent management to reduce banner fatigue while preserving user privacy rights.
The law requires them to make a one button option to deny all.
Google got fined millions of dollars for making it two clicks. And then they changed it to one click “reject all” after that.
Right, but not all have fixed that. I still see lots of cases where I have to turn off several options individually. Though these could be sites outside of the EU jurisdiction, so they just don’t care, or sites that make enough money off of the tracking data, that the fines would be insignificant even if the EU were to get around to fining them.
And again the comment stands that it’s not the law, but the implementations that are bad. The law requires it to be simple, but that’s not what was implemented.