Google and Amazon Fined a Total of $162 Million for Cookie Use Violations in France
The French Data Protection Authority, CNIL, fines companies for GDPR cookie consent violations.
Today, Dec.10, technology giants Google and Amazon got hit with a total fine of $162 million by the French Data Protection Authority, CNIL, for GDPR cookie consent violations.
CNIL fined Google a total of $120 million after an investigation carried out on March 16, 2020, revealed that Google.fr’s website placed advertising cookies automatically on users’ computers without obtaining prior consent from them.
According to the French regulator, Google LLC and Google Ireland were penalized for;
- Depositing tracking cookies in users’ computers without obtaining prior consent
- Providing insufficient information to users about the deployment of non-essential tracking cookies
- Partial failure of the "opt-out" mechanism for personalization of ads
Google’s fine is the biggest ever imposed in France for this type of breach.
In a separate announcement, the French DPA also fined e-commerce giant, Amazon, $42 million after investigations of Amazon.fr’s website between 12 December 2019 and 19 May 2020, revealed that cookies were automatically installed in consumers’ devices without any action required from them.
Amazon was fined for;
- Deploying tracking cookies without seeking consent from users
- Unclear information about the purposes of all tracking cookies placed in users’ devices
The fines against Google and Amazon were confirmed on CNIL’s website, and they are available in both French and English.
Complying with GDPR Cookie Consent with Secure Privacy
Secure Privacy offers a powerful consent management tool to help you ensure that you obtain prior consent for the use of non-essential cookies on your website.
It is essential to block non-essential plugins and tracking cookies until you have obtained consent from your users to deploy them on their devices.
Make your website compliant with these three simple steps
- Sign up for a free trial of our GDPR compliance solution
- Install the solution on your website
- Obtain GDPR-compliant cookie consent from users with our highly customizable cookie banners
Our free GDPR e-book provides a simplified step-by-step breakdown of the two laws to help you understand what you need to become compliant with the GDPR.
Additional Resources
- Learn more about cookie consent compliance in France with our simplified guide of CNIL’s Consent Guidelines.
- Read our detailed guide on how to comply with GDPR cookie consent requirements on your website
- Learn more about GDPR by downloading your free e-Book and get it delivered straight into your inbox
- Germany's 1&1 Telecom Fined $10.6 Million for a GDPR Violation
- Here are more of the highest GDPR fines enforced by regulators so far.

Influencer Data Dark Patterns: Manipulation in the Creator Economy
Are you aware of how your data might be manipulated when engaging with influencer content? Understanding these tactics is essential for maintaining your digital autonomy in today's creator-driven media landscape.
- Legal & News
- Data Protection
- GDPR

Mental Health App Data Privacy: HIPAA-GDPR Hybrid Compliance
How can mental health app developers navigate a complex regulatory landscape while delivering effective, privacy-respecting support to users? This deep dive explores the technical, legal, and operational strategies for achieving dual compliance.
- Legal & News
- Data Protection
- GDPR

The Final Frontier: GDPR and CCPA/CPRA Compliance in Space Tourism Consent
As companies prepare for routine civilian spaceflights, they must reconcile the physical risks of space travel with the digital risks of processing highly sensitive biometric, health, and behavioral data under conflicting jurisdictional requirements. How can space tourism operators satisfy these divergent requirements while delivering transformative experiences beyond Earth's atmosphere?
- Legal & News