Cookie and ePrivacy compliance tools

The EU’s ePrivacy rules (the “Cookie Law”) cover everything that tracks, from cookies to SDKs to fingerprinting. iubenda blocks them until users consent, records every choice, and keeps proof ready for audits. No guesswork. No grey areas.

You’re in good company

Over 150,000 organizations trust iubenda to manage consent across evolving EU privacy standards.

Cookie Law (ePrivacy Directive) explained

The ePrivacy Directive, aka the Cookie Law, covers any tech that stores or accesses data on a device. That means SDKs, pixels, local storage, unique IDs, web and mobile apps. If you serve EU/UK users, here’s what you need to do.

Cookie Policy

Tell people what you’re tracking and why.

Rejection Recovery

Get valid consent before running anything non-essential.

Cms

Let users easily change their minds later.

Block Cookie

Keep trackers blocked until you get the green light.

Members

Only share data if you’ve disclosed it and got consent.

The cost of ignoring the Cookie Law

Cookie Law violations trigger more than fines. They wreck trust, conversion rates, and credibility, while leaving you exposed when regulators come calling.


Fine

Regulator action

Invalid consent can trigger investigations, penalties, and ongoing scrutiny.

Issue

Illegal practices

Cookie walls, pre-ticked boxes, or “consent by scrolling” are all banned across the EU and UK.

Money

Lost conversions

Poor consent flows frustrate users, damage trust, and drain revenue, fast.

Anonymous

No proof, no compliance

If you can’t show audit logs, you’re exposed to disputes, complaints, and regulator checks.

You can’t run trackers until users opt in; you need to log every choice, and people must be able to change their minds at any time. Here’s what that looks like for your site:


Content
Rejection Recovery
Block Cookie
Cookie Policy
Cons
Cms

Cookie Law questions, answered


Does this work with WordPress, Shopify, or a custom build?
What if privacy laws change again?
Can I prove consent if regulators ask?
Is this compatible with GDPR?