TCF v2.3 is the standard you’re expected to run now, after v2.2’s pretty brutal reset on legal bases. v2.3 isn’t flashy — it just removes the “were we even disclosed?” guesswork by making vendor disclosure explicit in the consent string. 28 February 2026 is when the grace ends: keep generating non-v2.3 strings and you can hit partner failures, and Google may default the request to Limited Ads.

Are Third-Party Cookies disappearing and what is the future of Third-Party Cookies? Is Google still uses third-party cookies on Chrome? Read this blog to learn about the future of third-party cookies: user choice vs. cookie deprecation.

Data privacy laws are changing regularly, setting stricter standards. What to expect in 2026? Read this guide to learn more about data privacy trends in 2026.

The General Data Protection Regulation (GDPR) continues to shape how organizations collect, store, and use personal data across Europe.

On May 1, 2025, the CPPA issued a Final Order on Capital One Financial Corporation under the CCPA for using third-party technologies like Meta Pixel and Google Analytics. The court’s ruling signals that routine data-sharing technologies are no longer allowed.

Consent fatigue can lead to banner blindness, automatic rejection, and lost businesses revenues. Read strategies to improve user experience and increase opt-in rates.

What was Google’s Cookie Depreciation Plan? Is Google planning to block Third Party Cookies?

The IAB TCF continues to evolve. The new version of the IAB TCF v2.3 is expected to enter into force in the second half of 2025. Prepare and get ready for the upcoming updates.

The Irish Data Protection Commission has fined Meta 91 million euros for inadvertently storing users' passwords.

Ireland's Data Protection Commission on 22 October 2024 fined LinkedIn €310 million for data privacy violations. This is one of the largest fines in GDPR history.

CookieScript CMP received the GOLD tier at the new Google tiering system! Find out what does it mean.

The Dutch data protection watchdog fined Uber with €290 million for transferring European drivers' data to the US. Find out more.

Google makes its dark web monitoring tool free for everyone. Learn what is dark web monitoring and what personal data could be tracked.

Google dropped out its plans to remove Third-Party Cookies. This ends a four-year effort to replace cookies with other alternatives.

On July 2, 2024, the Lithuanian data protection supervisory authority imposed a fine of €2,385,276 on Vinted UAB for violating the GDPR following data subject complaints.

The introduction of Google Consent Mode v2 introduced enhanced data collection requirements and user privacy, which will affect digital marketing tools like Google Analytics 4 (GA4) and Google Ads. Read more to adapt to these changes.

Is the Pay or Consent Model allowed by the GDPR? Read this blog article to learn about what is the European Data Protection Board’s (EDPB) opinion on the Meta Pay or Consent Model.

The European Data Protection Board (EDPB) has introduced a new tool to file complaints regarding privacy issues for cases, involving multiple countries.

On May 16, 2023, the IAB released updates on TCF v2.2. Read the article to know what’s new in TCF v.2.2.

On March 31, Italy’s data regulator temporarily banned ChatGPT over data security concerns. Similar decisions could follow across Europe, especially in France, Germany, and Ireland.

TikTok was recently fined by French and Irish data protection authorities for breaches of data privacy laws. Read about breaches, cookies and other tracking technologies, used by TikTok.

On 13 December, the European Commission initiated the process of the adoption of an adequacy decision for the data transfers with the US. Read more about Data Privacy Framework.

Google must remove search results about people in Europe if they can prove that the information is inaccurate – the EU’s Court of Justice announced on December 8, 2022.

The Irish Data Protection Commission (DPC) fined Facebook parent Meta a €265 million fine on 28 November 2022, for breaching GDPR rules.

On 10 November 2022, the French data protection authority CNIL imposed a fine of €800,000 against Discord Inc., for violations of the General Data Protection Regulation (GDPR).

The use of Google Analytics was outlawed by data protection authorities of Austria, France, Italy, and Denmark for not complying with the GDPR. Read more about the reasons and the possible solution for using GA.

New privacy regulations are coming into force every year and more requirements are made for the Cookie Banner. This requires Cookie Banner to fit more and more elements, so we decided to make a new fresh design that will show all necessary information nicely. 

On December 1, the Wiesbaden Administrative Court in Germany issued an unprecedented decision stating that companies can’t use a cookie management provider that is relying on a service based in the United States to collect data. However, such a decision will not affect CookieScript and its customers.