Updated: Apr 14
Customers who access the Vueling company’s website did not have the capacity to configure the cookies.
The decision can be read in Spanish here
However, on the management of cookies, the company states that: “you can configure the browser to accept or reject by default all cookies or to receive an on-screen notice of the reception of each cookie and decide at that time its implementation or not on your hard drive.
What the organisation does not provide is a control system or cookie configuration panel that permits the person to delete them in a granular manner. To facilitate this selection the panel would have to enable a mechanism or button to reject all cookies, another to enable all cookies or to be able to do it in a granular manner to manage the preferences of each user.
These facts constitute an infringement of section 22.2 of the LSSI (Spanish law on information society services and electronic commerce), in keeping with which: “service providers may also use of data storage and retrieval devices on recipients’ terminal equipment, provided that they have given their consent after they have been provided with clear and complete information on their use, in particular, on the purposes of data processing”.