Google and Amazon Fined a Total of $162 Million for Cookie Use Violations in France
The French Data Protection Authority, CNIL, fines companies for GDPR cookie consent violations.
Today, Dec.10, technology giants Google and Amazon got hit with a total fine of $162 million by the French Data Protection Authority, CNIL, for GDPR cookie consent violations.
CNIL fined Google a total of $120 million after an investigation carried out on March 16, 2020, revealed that Google.fr’s website placed advertising cookies automatically on users’ computers without obtaining prior consent from them.
According to the French regulator, Google LLC and Google Ireland were penalized for;
- Depositing tracking cookies in users’ computers without obtaining prior consent
- Providing insufficient information to users about the deployment of non-essential tracking cookies
- Partial failure of the "opt-out" mechanism for personalization of ads
Google’s fine is the biggest ever imposed in France for this type of breach.
In a separate announcement, the French DPA also fined e-commerce giant, Amazon, $42 million after investigations of Amazon.fr’s website between 12 December 2019 and 19 May 2020, revealed that cookies were automatically installed in consumers’ devices without any action required from them.
Amazon was fined for;
- Deploying tracking cookies without seeking consent from users
- Unclear information about the purposes of all tracking cookies placed in users’ devices
The fines against Google and Amazon were confirmed on CNIL’s website, and they are available in both French and English.
Complying with GDPR Cookie Consent with Secure Privacy
Secure Privacy offers a powerful consent management tool to help you ensure that you obtain prior consent for the use of non-essential cookies on your website.
It is essential to block non-essential plugins and tracking cookies until you have obtained consent from your users to deploy them on their devices.
Make your website compliant with these three simple steps
- Sign up for a free trial of our GDPR compliance solution
- Install the solution on your website
- Obtain GDPR-compliant cookie consent from users with our highly customizable cookie banners
Our free GDPR e-book provides a simplified step-by-step breakdown of the two laws to help you understand what you need to become compliant with the GDPR.
Additional Resources
- Learn more about cookie consent compliance in France with our simplified guide of CNIL’s Consent Guidelines.
- Read our detailed guide on how to comply with GDPR cookie consent requirements on your website
- Learn more about GDPR by downloading your free e-Book and get it delivered straight into your inbox
- Germany's 1&1 Telecom Fined $10.6 Million for a GDPR Violation
- Here are more of the highest GDPR fines enforced by regulators so far.

The $6.75M Wake-Up Call: What California's Landmark Consent Enforcement Against Blackbaud Means for ...
A $6.75 million settlement with Blackbaud marks a fundamental shift in how regulators view consent management. This first major penalty targeting consent failures during a cybersecurity incident establishes critical precedents for businesses nationwide. Is your organization prepared for this new enforcement landscape?
- Legal & News
- Cookie Consent

Mobile App Consent Management: What You Need to Know in 2025
App users today expect transparency and control over their personal data. As privacy regulations tighten worldwide and user awareness grows, effective consent management has shifted from a nice-to-have feature to a critical requirement for mobile applications. Getting this right impacts not just your legal compliance but also user trust, engagement, and ultimately your app's success.
- Legal & News
- Cookie Consent

Adapting Consent Management to Decentralized Data Ecosystems
Traditional consent management is reaching its limits in today's interconnected digital world. As your data flows across multiple platforms, applications, and borders, centralized systems struggle to keep pace with both regulatory requirements and user expectations. Decentralized data ecosystems offer a promising alternative, but they require completely rethinking how we approach consent management.
- Legal & News
- Cookie Consent