The hype of the GDPR introduction is a few months past. Most companies have gotten back to their daily routine. But when I check 10 random websites, 9 are not GDPR compliant.
Compliant or not?
Apparently this is not a big issue for companies yet.
What is the problem with most websites? It's true, most websites show a cookie warning. But the cookie warning does not "do" anything. If you look at the cookies on your site, social media cookies and other third party tracking cookies are already placed when a site is loaded. Declining cookies won't have any effect therefore.
If the cookie banner works in the correct way, Facebook feeds, Youtube and Vimeo video's, sharing buttons, Google ReCaptcha, all these services should not be able to work before accepting cookies. If they work: cookies are placed.
One of the problems I faced when creating https://wordpress.org/plugins/complianz-gdpr/ was that you don't know in advance what kind of third party tools will be used. How can a website prevent Facebook from placing cookies? The only solution here, it seems, is to block the the script used to load Facebook.
After accepting cookies, all blocked scripts will then be initialized, allowing these services to place cookies and start tracking users.
Please note that if you only place functional cookies, you do not need a cookie banner at all. But if you use any kind of third party service, like Youtube, Facebook, Google (maps, recaptcha), then you do need a cookie banner, and you should use one which will block these social services until the user accepts these cookies.
Do you have a WordPress website and are you in doubt if your site is compliant?
Check out our free tool which will detect if you need a cookie banner or not, and which will block third party cookies before consent: https://wordpress.org/plugins/complianz-gdpr/