Iubenda logo
Start generating


Table of Contents

Cookie Policy Template

Some laws such as the ePrivacy and the General Data Protection Regulation (GDPR) require websites to detail their use of cookies to users. In this short post, we’ll share with you a cookie policy template and go through what you need in order to create a compliant cookie policy

What is a cookie policy?

Unlike a privacy policy, which makes legally required disclosures about your data processing activities in general, the cookie policy deals specifically with your use of cookies and contains those particular legally required disclosures – which we will exaplain below.

Keep in mind that, often, the cookie policy is a dedicated section of the main privacy policy of a website or an app.

First thing first, under the law, you’ll need to show a cookie banner (also called cookie notice) to inform site visitors and allow your users to provide or deny consent. In your cookie banner, you must link your cookie policy and make details of cookies’ purposes, usage, and related third-party activities available to the user.

More on cookies

This article is a part of our series on cookies and cookie consent. Read also:

👉 How to manage cookies consent on WordPress

Is it mandatory to have a Cookies Policy?

Disclosures related to cookies and tracking are indeed required by data protection laws across the world such as Europe’s GDPR, ePrivacy/ Cookie Law, and the US’ CCPA/CPRA and VCDPA.

In Europe, businesses that target Europe-based users are subject to laws such as the General Data Protection Regulation (GDPR) and the Cookie Law. These laws mandate that businesses provide clear information about their use of cookies and obtain appropriate consent from users.

Similarly, in the United States, there are privacy laws at both the state and federal levels that regulate the use of cookies and require businesses to provide transparency and obtain consent.

Having a comprehensive and informative cookie policy is therefore critical for compliance. It not only helps meet the legal requirements set forth by the GDPR and Cookie Law but also demonstrates a proactive approach to transparency and consent, which can be beneficial in anticipating and complying with future changes in state, federal, and international laws.

Do I need a separate cookie policy?

Although having a separate cookie policy is not strictly required, laws such as the GDPR and ePrivacy Directive do mandate that you provide comprehensive information about your use of cookies in a document that is easily accessible to all users. As a common practice, many website owners choose to either create a dedicated cookie policy page, or dedicate a section of their privacy policies to mandatory cookie disclosures. This page or section is then is linked to from the cookie banner or cookie notice. This approach allows for clear and transparent communication of their cookie practices while ensuring compliance with applicable regulations.

What do you write in a cookie policy?

The cookie policy should at least contain:

  1. The type of cookies that have been installed, for example tracking cookies, adversting, ect.
  2. Any third parties that run cookie on your site site/app, such as Google Analytics.
  3. The purposes for why each cookies are used must be described in detail.
  4. Details on how users can excersise their legal rights in regards to cookies. For example, how they can manage their preferences or withdraw consent.

*Also consider that your policy should be available in all the languages in which your services are provided.

Cookie Policy Example
The sample cookie policy above is just an example and the legal text is customized to specific data processes and laws. Remember that cookie policies are legal documents and it is mandatory that they contain truthful information or you could be putting yourself at risk. Find out how to generate a comprehensive and compliant cookie policy here. 

How can you obtain user consent for your Cookies Policy?

To comply with consent requirements for your cookies policy, users must actively indicate their agreement. 

This can be done through actions such as checking a box, providing information to proceed to the website, or clicking on cookie settings to acknowledge that they have read, understood, and wish to proceed with the associated policy.

Example of a Cookie Policy template

Here are a few examples of sections that you might find in a Cookie Policy template:

  • Introduction: This section provides an overview of the purpose and importance of the Cookie Policy and its relationship to the website’s privacy practices.
  • What are Cookies: This section explains what cookies are, their purpose, and how they function. It may also include information about other tracking technologies, such as web beacons and similar technologies.
  • Types of Cookies Used: Here, the policy describes the various types of cookies used on the website, such as essential cookies, functional cookies, analytics cookies, advertising cookies, and third-party cookies. Each type of cookie is explained, along with its specific purpose.
  • Cookie Management: This section informs users about how they can manage or disable cookies through browser settings or other available options. It may also provide instructions for opting out of certain types of tracking or managing cookie preferences.
  • Third-Party Cookies: If the website uses third-party cookies, this section outlines the purpose of these cookies, the third-party providers involved, and links to their respective cookie policies.
  • Cookie Duration: Here, the policy describes how long cookies are stored on the user’s device and whether they are persistent cookies or session cookies.
  • Cookie Consent: This section explains how user consent is obtained for the use of cookies, including details about any consent mechanisms implemented on the website.
  • Updates to the Cookie Policy: This part states that the Cookie Policy may be updated from time to time, and users are encouraged to check for any changes.
  • Contact Information: The policy provides contact details for users to reach out with any questions, concerns, or requests regarding the Cookie Policy or their privacy rights.

Please note that these examples serve as general guidelines, and the content and structure of a Cookie Policy may vary depending on the specific website and applicable legal requirements

Can I use a generator for my documents?

The good news is yes, you absolutely can!

But it would be best if you were careful. Choose a high-quality cookie policy generator that, at the very least, contains clauses written by actual legal professionals and that allows you to customize your document based on your individual needs entirely.

Need a cookie policy for your site?

With iubenda’s Privacy Controls and Cookie Solution you can manage all aspects of the GDPR, ePrivacy and the Cookie Law, in particular:

  • easily inform users via cookie banner and a dedicated cookie policy page;
  • obtain and save cookie consent settings;
  • preventively block scripts prior to consent; and
  • keep track of consent and save consent settings for each user for up to 12 months from the last site visit.

Want to see how to create a cookie policy in under 2 minutes? Watch the video here!

Create your cookie policy now!

Start generating

Learn more