EU law currently requires a cookie policy to give visitors the opportunity to opt-in to being tracked on your website, or opt-out if they choose.

GDPR requires this to be easily accessible and clear to read. It also requires the user is able to access the policy again to alter their consent options at any time.

You can see CANDDi’s Cookie Policy here.

What is important to remember is that a cookie policy does not replace a privacy policy (which details all data processes the website undertakes, rather than just the cookies). You need both to be GDPR compliant.

You can see CANDDi’s Privacy Policy here.

Here are some resources for building your privacy policy:

Have more questions? Contact us at or 0161 414 1080
Was this article helpful?
Thank you!