Request a Demo
Request a Demo

Does your website collect cookies without warning? Learn how to check now!

Estimated reading time: 7 minutes

Summary

{:br}

The General Data Protection Law (LGPD) has changed the privacy landscape in Brazil, requiring companies to be transparent and responsible in the handling of user data. However, even using compliance tools, many websites are still storing cookies without user consent, potentially violating the LGPD. This practical guide will show you how to check your website and ensure compliance.

What are cookies and how does the LGPD (Brazilian General Data Protection Law) address the topic?

Cookies are small text files that a website stores in a user's browser to remember their browsing preferences. They can improve the user experience, but they can also track behavior for marketing purposes. The LGPD (Brazilian General Data Protection Law) requires users to give explicit consent before non-essential cookies are stored. Even with compliance tools, many websites fail to follow these guidelines, resulting in potential violations.

Because your website may be out of compliance.

Compliance with the LGPD (Brazilian General Data Protection Law) is essential to guarantee user privacy, generating trust and avoiding potential sanctions for violations. However, many websites may not be compliant due to improper cookie storage. Here are some points to consider to identify if your website is at risk:

  • The website collects non-essential cookies without the user's consent;
  • The website does not clarify which cookies are used;
  • There is no mechanism for the user to consent to and manage the use of cookies.

These are flaws that may represent violations of the LGPD (Brazilian General Data Protection Law), compromising user privacy and also leaving the organization vulnerable to penalties and sanctions.

Step-by-Step: How to Verify Your Website's Compliance

Infographic titled "Verification of Cookie Storage in Compliance with the LGPD (Brazilian General Data Protection Law)".
  1. Access the website (using incognito mode):
    • Start the process by accessing the website you wish to verify.
    • Incognito tabs do not use existing browser cookies and browsing data. This ensures that the cookies you see are only those created and used by the current session, without interference from cookies from other sessions or previously visited websites.
    • Furthermore, when you access a website in an incognito tab, it's as if it were the first time you've accessed it. This allows you to see exactly which cookies the website is setting for a new visitor, without any pre-existing cookies that could alter the website's behavior or the cookies already set.
  2. Open Developer Tools:
    • Right-click on the page and select “Inspect” or use the shortcut (Ctrl + Shift + I on Windows/Linux or Cmd + Option + I on Mac).
    • In the panel that opens, go to the "Application" tab in Chrome or "Storage" in Firefox.
  3. Check Stored Cookies:
    • In the left panel, click on “Cookies” and a list of domains that are generating cookies will be displayed, as shown in the image below:

Please check the cookies that are stored before interacting with the cookie banner.

  1. Interact with the Cookie Banner:
    • Give your consent or refuse via the cookie banner displayed on the website.
  2. Reload Page:
    • After interacting with the cookie banner, please reload the page to check the stored cookies again.
  3. Check Cookies After Interaction:
    • Verify that the stored cookies respect the choice made in the cookie banner. If the user has not given consent, no new non-essential cookies should be stored.
  4. Determine Conformity:
    • Cookies Stored Without Consent:
      • If any non-essential cookies were stored before consent or even after refusal, the website is not in compliance with the LGPD (Brazilian General Data Protection Law).
    • User Preference Respected:
      • After interacting with the banner, check if the website respected the user's preference. If so, the website is compliant.

Practical examples

Scenario 1: Best practices

  • The user accesses the website.
  • The cookie banner is displayed, and no non-essential cookies are stored before consent is given.
  • – After consent is given, only authorized cookies are stored.

Scenario 2: Practices not recommended

  • The user accesses the website.
  • The cookie banner is displayed, but non-essential cookies are already stored before consent is given.
  • Even after refusal, cookies continue to be stored.

Additional Tools for Verification

Compliance with website cookie usage regulations is crucial for ensuring user privacy, maintaining transparency, and building trust. This involves clearly informing users about the cookies used, obtaining explicit consent before storing them, and offering options to manage cookie preferences. Compliance with regulations such as the LGPD (Brazilian General Data Protection Law) and the GDPR (General Data Protection Regulation) not only avoids fines and penalties but also demonstrates a commitment to protecting personal data, promoting a positive and responsible reputation for the company among its clients and partners.

With the steps detailed in this article and the support of Privacy Tools, you can verify if your website is respecting users' consent preferences and is in compliance with the General Data Protection Law (LGPD).

Privacy Tools offers robust solutions that can help scan your website, identify cookies used, and automatically classify them. Additionally, it allows you to create and customize a cookie banner for your users, enabling them to manage and consent to the use of cookies on your website.

Learn more about how cookie management can protect your company against LGPD fines. here.

Speak to a specialist and access our demo by clicking [here]. here.

{:} {: en}

The General Data Protection Law (LGPD) has changed the privacy landscape in Brazil, requiring companies to be transparent and responsible in the handling of user data. However, even using compliance tools, many websites are still storing cookies without user consent, potentially violating the LGPD. This practical guide will show you how to check your website and ensure compliance.

What are cookies and how does the LGPD (Brazilian General Data Protection Law) address the topic?

Cookies are small text files that a website stores in a user's browser to remember their browsing preferences. They can improve the user experience, but they can also track behavior for marketing purposes. The LGPD (Brazilian General Data Protection Law) requires users to give explicit consent before non-essential cookies are stored. Even with compliance tools, many websites fail to follow these guidelines, resulting in potential violations.

Because your website may be out of compliance.

Compliance with the LGPD (Brazilian General Data Protection Law) is essential to guarantee user privacy, generating trust and avoiding potential sanctions for violations. However, many websites may not be compliant due to improper cookie storage. Here are some points to consider to identify if your website is at risk:

  • The website collects non-essential cookies without the user's consent;
  • The website does not clarify which cookies are used;
  • There is no mechanism for the user to consent to and manage the use of cookies.

These are flaws that may represent violations of the LGPD (Brazilian General Data Protection Law), compromising user privacy and also leaving the organization vulnerable to penalties and sanctions.

Step-by-Step: How to Verify Your Website's Compliance

Infographic titled "Verification of Cookie Storage in Compliance with the LGPD (Brazilian General Data Protection Law)".
  1. Access the website (using incognito mode):
    • Start the process by accessing the website you wish to verify.
    • Incognito tabs do not use existing browser cookies and browsing data. This ensures that the cookies you see are only those created and used by the current session, without interference from cookies from other sessions or previously visited websites.
    • Furthermore, when you access a website in an incognito tab, it's as if it were the first time you've accessed it. This allows you to see exactly which cookies the website is setting for a new visitor, without any pre-existing cookies that could alter the website's behavior or the cookies already set.
  2. Open Developer Tools:
    • Right-click on the page and select “Inspect” or use the shortcut (Ctrl + Shift + I on Windows/Linux or Cmd + Option + I on Mac).
    • In the panel that opens, go to the "Application" tab in Chrome or "Storage" in Firefox.
  3. Check Stored Cookies:
    • In the left panel, click on “Cookies” and a list of domains that are generating cookies will be displayed, as shown in the image below:

Please check the cookies that are stored before interacting with the cookie banner.

  1. Interact with the Cookie Banner:
    • Give your consent or refuse via the cookie banner displayed on the website.
  2. Reload Page:
    • After interacting with the cookie banner, please reload the page to check the stored cookies again.
  3. Check Cookies After Interaction:
    • Verify that the stored cookies respect the choice made in the cookie banner. If the user has not given consent, no new non-essential cookies should be stored.
  4. Determine Conformity:
    • Cookies Stored Without Consent:
      • If any non-essential cookies were stored before consent or even after refusal, the website is not in compliance with the LGPD (Brazilian General Data Protection Law).
    • User Preference Respected:
      • After interacting with the banner, check if the website respected the user's preference. If so, the website is compliant.

Practical examples

Scenario 1: Best practices

  • The user accesses the website.
  • The cookie banner is displayed, and no non-essential cookies are stored before consent is given.
  • – After consent is given, only authorized cookies are stored.

Scenario 2: Practices not recommended

  • The user accesses the website.
  • The cookie banner is displayed, but non-essential cookies are already stored before consent is given.
  • Even after refusal, cookies continue to be stored.

Additional Tools for Verification

Compliance with website cookie usage regulations is crucial for ensuring user privacy, maintaining transparency, and building trust. This involves clearly informing users about the cookies used, obtaining explicit consent before storing them, and offering options to manage cookie preferences. Compliance with regulations such as the LGPD (Brazilian General Data Protection Law) and the GDPR (General Data Protection Regulation) not only avoids fines and penalties but also demonstrates a commitment to protecting personal data, promoting a positive and responsible reputation for the company among its clients and partners.

With the steps detailed in this article and the support of Privacy Tools, you can verify if your website is respecting users' consent preferences and is in compliance with the General Data Protection Law (LGPD).

Privacy Tools offers robust solutions that can help scan your website, identify cookies used, and automatically classify them. Additionally, it allows you to create and customize a cookie banner for your users, enabling them to manage and consent to the use of cookies on your website.

Learn more about how cookie management can protect your company against LGPD fines. here.

Speak to a specialist and access our demo by clicking [here]. here.

{:}

About the Author

Meet the author of this article.
see all posts

Want to see how Privacy Tools can help your company in practice?

Request a personalized demonstration and see how our solutions adapt to your needs.

Logo-7
Logo-6
Logo-8
Logo-20
Logo-19
Logo-17
Logo-16
Logo-18
Logo-15
Logo-14
Logo-13
Logo-12
Logo-11
Logo-10
Logo-9
Logo-5
Logo-4
Logo-3
Logo-2
Logo-1
Schedule demo

Related articles section

Read also

What stood out at the IAPP Global Summit 2026?

The IAPP Global Summit 2026 in Washington, which took place between March 30th and April 02nd, maintained its fundamental characteristic:...

Read more

Technology Governance: Why new technologies require new legal security mechanisms.

Every day we become more dependent, both as individuals and as a society, on new technologies. If, until a few years ago, the legal debate focused...

Read more

Everything you need to know about the Digital ECA.

The internet has become a central part of the lives of children and teenagers. Social networks, online games, video platforms, and apps are ubiquitous...

Read more

Artificial Intelligence without a DPO? Unthinkable! Innovation demands AI governance.

Technological evolution creates the illusion that speed is more important than structure. And artificial intelligence is no exception...

Read more

Map of Priority Themes of the ANPD (National Data Protection Authority): what changes for companies in 2026

Topics related to information security, privacy, and the protection of children's and adolescents' data were the subject of other articles...

Read more

Governance that generates growth: why SMEs need a strategic DPO.

For a long time, data protection was perceived by small and medium-sized enterprises as a distant issue—relevant, but not necessarily...

Read more