Cookie Consent & Privacy Glossary
All important terms around privacy and consent management explained simply.
Cookie Consent & Privacy Glossary
AVV (Data Processing Agreement)
LegalA contract required under GDPR between the data controller and processor that governs data processing. Known as 'Auftragsverarbeitungsvertrag' in German law, equivalent to a DPA (Data Processing Agreement).
Browser Fingerprinting
TechnologyA technique for user identification based on unique browser characteristics β without cookies, but legally problematic.
CCPA
LawsThe California Consumer Privacy Act gives California consumers the right to know what data is collected and to opt-out of the sale of their data.
Cease and Desist Letter
LegalA formal legal warning (often from lawyers or consumer protection associations) demanding cessation of unlawful behavior, which can incur significant costs. Particularly common in German-speaking countries for GDPR violations.
CMP (Consent Management Platform)
BasicsA software solution that enables website operators to obtain and manage user consent for cookies and tracking in a legally compliant manner.
Consent
BasicsThe explicit, informed, and voluntary agreement of a user to the processing of their personal data for a specific purpose.
Conversion Tracking
MarketingThe measurement of user actions (purchases, sign-ups, etc.) to evaluate advertising effectiveness.
Cookie
TechnologySmall text files stored by websites on the user's device. They serve to store settings, session data, or tracking information.
Dark Pattern
LegalManipulative design practices in cookie banners designed to trick users into accepting cookies β e.g., through hidden reject buttons.
Data Processor
LegalA company that processes personal data on behalf of another (the controller) β e.g., a CMP provider.
DMA (Digital Markets Act)
LawsAn EU regulation that has been in effect since 2024 to ensure more competition among large platforms and has implications for consent requirements.
DPA (Data Processing Agreement)
LegalA contract required under GDPR between the controller and processor that regulates data processing.
DPIA (Data Protection Impact Assessment)
LegalA formal risk assessment that must be conducted before processing personal data with high risk.
ePrivacy Directive
LawsAn EU directive governing data protection in electronic communications and forming the basis for cookie consent requirements.
EU AI Act
LawsThe world's first comprehensive AI regulation, in force since August 2024. It classifies AI systems by risk and requires transparency.
First-Party Cookie
TechnologyA cookie set by the visited website itself. These are often necessary for the basic functionality of the site.
GDPR
LawsThe General Data Protection Regulation is an EU regulation that has governed the protection of personal data since May 2018. It applies to all companies processing data of EU citizens.
Google Consent Mode
TechnologyA Google feature that allows adjusting the behavior of Google tags based on the user's consent status. V2 has been mandatory since March 2024.
GPC (Global Privacy Control)
TechnologyA browser signal that allows users to automatically communicate their privacy preferences to websites.
GTM (Google Tag Manager)
TechnologyA tool for managing marketing tags and tracking codes without direct intervention in the website code.
IAB (Interactive Advertising Bureau)
StandardsAn international industry association for digital advertising that develops standards like TCF.
LGPD
LawsThe Brazilian data protection law (Lei Geral de ProteΓ§Γ£o de Dados) is similar to GDPR and has been in effect since 2020.
LocalStorage
TechnologyA web storage mechanism that permanently stores data in the browser. Unlike cookies, this data is not automatically sent to the server.
Pixel Tracking
TechnologyA tracking method where an invisible 1x1 pixel image is loaded to capture user actions (e.g., Facebook Pixel).
POPIA
LawsThe Protection of Personal Information Act is South Africa's data protection law, in force since 2021.
Remarketing (Retargeting)
MarketingAn advertising strategy where users who have visited a website are targeted with specific ads on other sites.
SessionStorage
TechnologySimilar to LocalStorage, but the data is deleted when the browser tab is closed.
TCF 2.3 (Transparency & Consent Framework)
StandardsAn IAB standard that standardizes how websites obtain user consent and pass it on to advertising partners.
TDDDG (German Digital Services Privacy Act)
LawsThe German Telecommunications-Digital Services-Data Protection Act (Telekommunikation-Digitale-Dienste-Datenschutz-Gesetz) specifically regulates data protection for digital services in Germany and contains cookie consent requirements.
Third-Party Cookie
TechnologyA cookie set by a domain other than the visited website. Commonly used for advertising and cross-site tracking.
White-Label
ProductA solution without provider branding that allows agencies or resellers to offer it under their own name.
Deepen Your Knowledge
Find comprehensive articles on all topics in our knowledge base.
Go to Knowledge Base