Cookies are small text files that websites place on your device as you are browsing. They are processed and stored by your web browser. In and of themselves, cookies are harmless and serve crucial functions for websites. Cookies can also generally be easily viewed and deleted.
However, cookies can store a wealth of data, enough to potentially identify you without your consent. Cookies are the primary tool that advertisers use to track your online activity so that they can target you with highly specific ads. Given the amount of data that cookies can contain, they can be considered personal data in certain circumstances and, therefore, subject to the GDPR. Companies do have a right to process their users’ data as long as they receive consent or if they have a legitimate interest.
Cookies and ePrivacy Directive
Passed in 2002 and amended in 2009, the ePrivacy Directive (EPD) has become known as the “cookie law” since its most notable effect was the proliferation of cookie consent pop-ups after it was passed. It supplements (and in some cases, overrides) the GDPR, addressing crucial aspects about the confidentiality of electronic communications and the tracking of Internet users more broadly.
See below for more information regarding how CHEQ complies with the GDPR and ePrivacy Directive.
CHEQ’s Cookie Classification
CHEQ cookies are used to ensure that once a session is identified as fraudulent or malicious, it can be consistently blocked from access to the relevant customer’s website. The cookies are not
used for any other purpose and do not contain any personal data.
Unlike third-party advertising cookies, most CHEQ cookies are not associated with any
third party, within the meaning of the article 29 working party opinion on cookie consent.
Four of the cookies are top-level domain cookies, and the fifth is associated with CHEQ,
which uses the cookie not as a third party, but as a processor for the customer’s benefit.
They are a tool provided directly to, and controlled by, the site owner – CHEQ’s customer –
to track traffic to its site, and are not used by any third party or for any other purpose.
CHEQ considers its cookies as strictly required, based on the advice of its EU legal counsel.
CHEQ’s cookies are used to identify and block fraudulent access to our customer’s websites.
Accordingly, we believe that requiring consent to place the cookie on an end user’s device
will have a material detrimental effect on the quality of the outcome of the services. As we
consider that the website owner has a legitimate business interest in preventing malicious
access to its website as an inherent part of making the website available, we consider the
cookies strictly required for the user’s access to the service.