Skip to content
News
EN

Data brokers: Identification possible to sell ads, not to exercise fundamental rights

noyb - European Center for Digital Rights

Content

Today, noyb filed a series of complaints against websites and data brokers that did not correctly address access requests using cookies as an authentication factor. The companies had shown obstructive approaches when authenticating users; ranging from denying the right to access, to requiring additional information, unnecessary to authenticate the user. Complaint against data broker: machine translated EN [PDF] Complaint against website: machine translated EN [PDF] Exercising fundamental rights via cookie-based authentication. Tracking cookies are used to identify, profile and target a user with personalized ads. Therefore, cookie data can also be used to identify and authenticate users exercising their GDPR rights. At least in theory. In order to test how cookie based authentication is handled by the industry, users made a number of access requests based on cookie data in a noyb project. Failure to respond to access request. In order to obtain the information gathered on them, the use