Cookieバナーのダークパターン:何が違法で何がリスクでどう準拠するか
ヨーロッパの規制当局はCookieバナーの有無だけでなくその動作を検査しています。ダークパターンは執行対象の第一位になりました。罰金は現実のものであり増加しています。
7
1. Hidden Reject
Accept prominent, Reject buried. CNIL: €60M fine.
2. Pre-Checked Boxes
CJEU Planet49: pre-checked = invalid consent.
3. Cookie Walls
Blocking access until consent. EDPB: not freely given.
4. Confusing Language
Legal jargon, double negatives. Clear language required.
5. Emotional Manipulation
Guilt-tripping reject options. Regulators flagged.
6. Asymmetric Effort
1 click accept, 5 clicks reject = dark pattern.
7. Repeated Prompting
Showing banner again after decline = dark pattern.
- CNIL: €60M + €40M — reject harder than accept
- Italian DPA: €20M — pre-checked + cookie walls
- Spanish AEPD: €2.5M — manipulative design
- Accept = Reject same size/colour/clicks
- No pre-checked boxes
- No cookie wall
- Plain language in visitor's language
- No guilt-tripping
- Choices remembered
- Withdrawal as easy as giving consent
FlexyConsent
Dark-pattern-free by design. Equal buttons, no pre-checks, 43+ languages, Google Certified CMP.
FlexyConsent——ダークパターンなしの準拠。
無料トライアル