Google and Amazon Fined a Total of $162 Million for Cookie Use Violations in France
The French Data Protection Authority, CNIL, fines companies for GDPR cookie consent violations.
Today, Dec.10, technology giants Google and Amazon got hit with a total fine of $162 million by the French Data Protection Authority, CNIL, for GDPR cookie consent violations.
CNIL fined Google a total of $120 million after an investigation carried out on March 16, 2020, revealed that Google.fr’s website placed advertising cookies automatically on users’ computers without obtaining prior consent from them.
According to the French regulator, Google LLC and Google Ireland were penalized for;
- Depositing tracking cookies in users’ computers without obtaining prior consent
- Providing insufficient information to users about the deployment of non-essential tracking cookies
- Partial failure of the "opt-out" mechanism for personalization of ads
Google’s fine is the biggest ever imposed in France for this type of breach.
In a separate announcement, the French DPA also fined e-commerce giant, Amazon, $42 million after investigations of Amazon.fr’s website between 12 December 2019 and 19 May 2020, revealed that cookies were automatically installed in consumers’ devices without any action required from them.
Amazon was fined for;
- Deploying tracking cookies without seeking consent from users
- Unclear information about the purposes of all tracking cookies placed in users’ devices
The fines against Google and Amazon were confirmed on CNIL’s website, and they are available in both French and English.
Complying with GDPR Cookie Consent with Secure Privacy
Secure Privacy offers a powerful consent management tool to help you ensure that you obtain prior consent for the use of non-essential cookies on your website.
It is essential to block non-essential plugins and tracking cookies until you have obtained consent from your users to deploy them on their devices.
Make your website compliant with these three simple steps
- Sign up for a free trial of our GDPR compliance solution
- Install the solution on your website
- Obtain GDPR-compliant cookie consent from users with our highly customizable cookie banners
Our free GDPR e-book provides a simplified step-by-step breakdown of the two laws to help you understand what you need to become compliant with the GDPR.
Additional Resources
- Learn more about cookie consent compliance in France with our simplified guide of CNIL’s Consent Guidelines.
- Read our detailed guide on how to comply with GDPR cookie consent requirements on your website
- Learn more about GDPR by downloading your free e-Book and get it delivered straight into your inbox
- Germany's 1&1 Telecom Fined $10.6 Million for a GDPR Violation
- Here are more of the highest GDPR fines enforced by regulators so far.

Cross-Domain Cookie Consent: Complete Implementation Guide
Cross-domain cookie consent is a vital solution for companies managing multiple websites, subdomains, or digital properties under one corporate umbrella. Without proper implementation, users face repetitive consent banners as they move between related sites, creating friction and potentially exposing organizations to compliance risks.
- Legal & News
- Data Protection
- Cookie Consent

Google Consent Mode on Mobile: A Practical Guide for Marketers and Developers
Your mobile analytics are broken, and you might not even know it. Google consent mode mobile implementation has become mandatory for apps serving European users as of March 2024, yet most businesses are still using desktop-only solutions that fail catastrophically on mobile devices.
- Legal & News
- Data Protection
- Governance

Documents Module – Secure Repository for Privacy Governance
Privacy documents management has become the backbone of effective data protection programs as organizations face increasing regulatory scrutiny and complex compliance requirements. Without centralized document control, privacy teams struggle with scattered files, outdated versions, and inconsistent access permissions that create significant compliance risks.
- Legal & News
- Data Protection
- Governance