Flag of DE

Privacy Regulations in Germany

3 privacy and data protection regulations that apply in Germany

All Regulations

Europe3

GDPR
EU + EEA
Flag of ATFlag of BEFlag of BG+27
Opt-inSupranational

The GDPR sets the global standard for data protection, requiring explicit opt-in consent before processing personal data of EU/EEA residents. For websites, non-essential cookies must be blocked until visitors actively consent. Pre-ticked boxes and implied consent are invalid.

ePrivacy Directive
EU + EEA
Flag of ATFlag of BEFlag of BG+27
Opt-inSupranational

Article 5(3) of the ePrivacy Directive is the primary EU legal basis requiring cookie consent. It mandates prior informed consent before storing or accessing any information on a user's device, with narrow exceptions only for transmission necessity and explicitly requested services.

TDDDG
Germany
Flag of DE
Opt-in

Germany implements the ePrivacy Directive through Section 25 of TDDDG (renamed from TTDSG in May 2024). A Consent Management Ordinance (EinwV) became effective April 2025, establishing a voluntary framework for recognized consent management services. Cookie banners must not obscure website content.